//===----------------------------------------------------------------------===//
//
// This source file is part of the Soto for AWS open source project
//
// Copyright (c) 2017-2024 the Soto project authors
// Licensed under Apache License v2.0
//
// See LICENSE.txt for license information
// See CONTRIBUTORS.txt for the list of Soto project authors
//
// SPDX-License-Identifier: Apache-2.0
//
//===----------------------------------------------------------------------===//

// THIS FILE IS AUTOMATICALLY GENERATED by https://github.com/soto-project/soto-codegenerator.
// DO NOT EDIT.

#if canImport(FoundationEssentials)
import FoundationEssentials
#else
import Foundation
#endif
@_exported import SotoCore

/// Service object for interacting with AWS EKS service.
///
/// Amazon Elastic Kubernetes Service (Amazon EKS) is a managed service that makes it easy for you to run Kubernetes on Amazon Web Services without needing to setup or maintain your own Kubernetes control plane. Kubernetes is an open-source system for automating the deployment, scaling, and management of containerized applications. Amazon EKS runs up-to-date versions of the open-source Kubernetes software, so you can use all the existing plugins and tooling from the Kubernetes community. Applications running on Amazon EKS are fully compatible with applications running on any standard Kubernetes environment, whether running in on-premises data centers or public clouds. This means that you can easily migrate any standard Kubernetes application to Amazon EKS without any code modification required.
public struct EKS: AWSService {
    // MARK: Member variables

    /// Client used for communication with AWS
    public let client: AWSClient
    /// Service configuration
    public let config: AWSServiceConfig

    // MARK: Initialization

    /// Initialize the EKS client
    /// - parameters:
    ///     - client: AWSClient used to process requests
    ///     - region: Region of server you want to communicate with. This will override the partition parameter.
    ///     - partition: AWS partition where service resides, standard (.aws), china (.awscn), government (.awsusgov).
    ///     - endpoint: Custom endpoint URL to use instead of standard AWS servers
    ///     - middleware: Middleware chain used to edit requests before they are sent and responses before they are decoded 
    ///     - timeout: Timeout value for HTTP requests
    ///     - byteBufferAllocator: Allocator for ByteBuffers
    ///     - options: Service options
    public init(
        client: AWSClient,
        region: SotoCore.Region? = nil,
        partition: AWSPartition = .aws,
        endpoint: String? = nil,
        middleware: AWSMiddlewareProtocol? = nil,
        timeout: TimeAmount? = nil,
        byteBufferAllocator: ByteBufferAllocator = ByteBufferAllocator(),
        options: AWSServiceConfig.Options = []
    ) {
        self.client = client
        self.config = AWSServiceConfig(
            region: region,
            partition: region?.partition ?? partition,
            serviceName: "EKS",
            serviceIdentifier: "eks",
            serviceProtocol: .restjson,
            apiVersion: "2017-11-01",
            endpoint: endpoint,
            variantEndpoints: Self.variantEndpoints,
            errorType: EKSErrorType.self,
            middleware: middleware,
            timeout: timeout,
            byteBufferAllocator: byteBufferAllocator,
            options: options
        )
    }




    /// FIPS and dualstack endpoints
    static var variantEndpoints: [EndpointVariantType: AWSServiceConfig.EndpointVariant] {[
        [.fips]: .init(endpoints: [
            "af-south-1": "fips.eks.af-south-1.amazonaws.com",
            "ap-east-1": "fips.eks.ap-east-1.amazonaws.com",
            "ap-east-2": "fips.eks.ap-east-2.amazonaws.com",
            "ap-northeast-1": "fips.eks.ap-northeast-1.amazonaws.com",
            "ap-northeast-2": "fips.eks.ap-northeast-2.amazonaws.com",
            "ap-northeast-3": "fips.eks.ap-northeast-3.amazonaws.com",
            "ap-south-1": "fips.eks.ap-south-1.amazonaws.com",
            "ap-south-2": "fips.eks.ap-south-2.amazonaws.com",
            "ap-southeast-1": "fips.eks.ap-southeast-1.amazonaws.com",
            "ap-southeast-2": "fips.eks.ap-southeast-2.amazonaws.com",
            "ap-southeast-3": "fips.eks.ap-southeast-3.amazonaws.com",
            "ap-southeast-4": "fips.eks.ap-southeast-4.amazonaws.com",
            "ap-southeast-5": "fips.eks.ap-southeast-5.amazonaws.com",
            "ap-southeast-6": "fips.eks.ap-southeast-6.amazonaws.com",
            "ap-southeast-7": "fips.eks.ap-southeast-7.amazonaws.com",
            "ca-central-1": "fips.eks.ca-central-1.amazonaws.com",
            "ca-west-1": "fips.eks.ca-west-1.amazonaws.com",
            "eu-central-1": "fips.eks.eu-central-1.amazonaws.com",
            "eu-central-2": "fips.eks.eu-central-2.amazonaws.com",
            "eu-north-1": "fips.eks.eu-north-1.amazonaws.com",
            "eu-south-1": "fips.eks.eu-south-1.amazonaws.com",
            "eu-south-2": "fips.eks.eu-south-2.amazonaws.com",
            "eu-west-1": "fips.eks.eu-west-1.amazonaws.com",
            "eu-west-2": "fips.eks.eu-west-2.amazonaws.com",
            "eu-west-3": "fips.eks.eu-west-3.amazonaws.com",
            "il-central-1": "fips.eks.il-central-1.amazonaws.com",
            "me-central-1": "fips.eks.me-central-1.amazonaws.com",
            "me-south-1": "fips.eks.me-south-1.amazonaws.com",
            "mx-central-1": "fips.eks.mx-central-1.amazonaws.com",
            "sa-east-1": "fips.eks.sa-east-1.amazonaws.com",
            "us-east-1": "fips.eks.us-east-1.amazonaws.com",
            "us-east-2": "fips.eks.us-east-2.amazonaws.com",
            "us-gov-east-1": "eks.us-gov-east-1.amazonaws.com",
            "us-gov-west-1": "eks.us-gov-west-1.amazonaws.com",
            "us-west-1": "fips.eks.us-west-1.amazonaws.com",
            "us-west-2": "fips.eks.us-west-2.amazonaws.com"
        ])
    ]}

    // MARK: API Calls

    /// Associates an access policy and its scope to an access entry. For more information about associating access policies, see Associating and disassociating access policies to and from access entries in the Amazon EKS User Guide.
    @Sendable
    @inlinable
    public func associateAccessPolicy(_ input: AssociateAccessPolicyRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> AssociateAccessPolicyResponse {
        try await self.client.execute(
            operation: "AssociateAccessPolicy", 
            path: "/clusters/{clusterName}/access-entries/{principalArn}/access-policies", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Associates an access policy and its scope to an access entry. For more information about associating access policies, see Associating and disassociating access policies to and from access entries in the Amazon EKS User Guide.
    ///
    /// Parameters:
    ///   - accessScope: The scope for the AccessPolicy. You can scope access policies to an entire cluster or to specific Kubernetes namespaces.
    ///   - clusterName: The name of your cluster.
    ///   - policyArn: The ARN of the AccessPolicy that you're associating. For a list of ARNs, use ListAccessPolicies.
    ///   - principalArn: The Amazon Resource Name (ARN) of the IAM user or role for the AccessEntry that you're associating the access policy to.
    ///   - logger: Logger use during operation
    @inlinable
    public func associateAccessPolicy(
        accessScope: AccessScope,
        clusterName: String,
        policyArn: String,
        principalArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> AssociateAccessPolicyResponse {
        let input = AssociateAccessPolicyRequest(
            accessScope: accessScope, 
            clusterName: clusterName, 
            policyArn: policyArn, 
            principalArn: principalArn
        )
        return try await self.associateAccessPolicy(input, logger: logger)
    }

    /// Associates an encryption configuration to an existing cluster. Use this API to enable encryption on existing clusters that don't already have encryption enabled. This allows you to implement a defense-in-depth security strategy without migrating applications to new Amazon EKS clusters.
    @Sendable
    @inlinable
    public func associateEncryptionConfig(_ input: AssociateEncryptionConfigRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> AssociateEncryptionConfigResponse {
        try await self.client.execute(
            operation: "AssociateEncryptionConfig", 
            path: "/clusters/{clusterName}/encryption-config/associate", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Associates an encryption configuration to an existing cluster. Use this API to enable encryption on existing clusters that don't already have encryption enabled. This allows you to implement a defense-in-depth security strategy without migrating applications to new Amazon EKS clusters.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - encryptionConfig: The configuration you are using for encryption.
    ///   - logger: Logger use during operation
    @inlinable
    public func associateEncryptionConfig(
        clientRequestToken: String? = AssociateEncryptionConfigRequest.idempotencyToken(),
        clusterName: String,
        encryptionConfig: [EncryptionConfig],
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> AssociateEncryptionConfigResponse {
        let input = AssociateEncryptionConfigRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            encryptionConfig: encryptionConfig
        )
        return try await self.associateEncryptionConfig(input, logger: logger)
    }

    /// Associates an identity provider configuration to a cluster. If you want to authenticate identities using an identity provider, you can create an identity provider configuration and associate it to your cluster. After configuring authentication to your cluster you can create Kubernetes Role and ClusterRole objects, assign permissions to them, and then bind them to the identities using Kubernetes RoleBinding and ClusterRoleBinding objects. For more information see Using RBAC Authorization in the Kubernetes documentation.
    @Sendable
    @inlinable
    public func associateIdentityProviderConfig(_ input: AssociateIdentityProviderConfigRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> AssociateIdentityProviderConfigResponse {
        try await self.client.execute(
            operation: "AssociateIdentityProviderConfig", 
            path: "/clusters/{clusterName}/identity-provider-configs/associate", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Associates an identity provider configuration to a cluster. If you want to authenticate identities using an identity provider, you can create an identity provider configuration and associate it to your cluster. After configuring authentication to your cluster you can create Kubernetes Role and ClusterRole objects, assign permissions to them, and then bind them to the identities using Kubernetes RoleBinding and ClusterRoleBinding objects. For more information see Using RBAC Authorization in the Kubernetes documentation.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - oidc: An object representing an OpenID Connect (OIDC) identity provider configuration.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - logger: Logger use during operation
    @inlinable
    public func associateIdentityProviderConfig(
        clientRequestToken: String? = AssociateIdentityProviderConfigRequest.idempotencyToken(),
        clusterName: String,
        oidc: OidcIdentityProviderConfigRequest,
        tags: [String: String]? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> AssociateIdentityProviderConfigResponse {
        let input = AssociateIdentityProviderConfigRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            oidc: oidc, 
            tags: tags
        )
        return try await self.associateIdentityProviderConfig(input, logger: logger)
    }

    /// Creates an access entry. An access entry allows an IAM principal to access your cluster. Access entries can replace the need to maintain entries in the aws-auth ConfigMap for authentication. You have the following options for authorizing an IAM principal to access Kubernetes objects on your cluster: Kubernetes role-based access control (RBAC), Amazon EKS, or both. Kubernetes RBAC authorization requires you to create and manage Kubernetes Role, ClusterRole, RoleBinding, and ClusterRoleBinding objects, in addition to managing access entries. If you use Amazon EKS authorization exclusively, you don't need to create and manage Kubernetes Role, ClusterRole, RoleBinding, and ClusterRoleBinding objects. For more information about access entries, see Access entries in the Amazon EKS User Guide.
    @Sendable
    @inlinable
    public func createAccessEntry(_ input: CreateAccessEntryRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreateAccessEntryResponse {
        try await self.client.execute(
            operation: "CreateAccessEntry", 
            path: "/clusters/{clusterName}/access-entries", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates an access entry. An access entry allows an IAM principal to access your cluster. Access entries can replace the need to maintain entries in the aws-auth ConfigMap for authentication. You have the following options for authorizing an IAM principal to access Kubernetes objects on your cluster: Kubernetes role-based access control (RBAC), Amazon EKS, or both. Kubernetes RBAC authorization requires you to create and manage Kubernetes Role, ClusterRole, RoleBinding, and ClusterRoleBinding objects, in addition to managing access entries. If you use Amazon EKS authorization exclusively, you don't need to create and manage Kubernetes Role, ClusterRole, RoleBinding, and ClusterRoleBinding objects. For more information about access entries, see Access entries in the Amazon EKS User Guide.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - kubernetesGroups: The value for name that you've specified for kind: Group as a subject in a Kubernetes RoleBinding or ClusterRoleBinding object. Amazon EKS doesn't confirm that the value for name exists in any bindings on your cluster. You can specify one or more names. Kubernetes authorizes the principalArn of the access entry to access any cluster objects that you've specified in a Kubernetes Role or ClusterRole object that is also specified in a binding's roleRef. For more information about creating Kubernetes RoleBinding, ClusterRoleBinding, Role, or ClusterRole objects, see Using RBAC Authorization in the Kubernetes documentation. If you want Amazon EKS to authorize the principalArn (instead of, or in addition to Kubernetes authorizing the principalArn), you can associate one or more access policies to the access entry using AssociateAccessPolicy. If you associate any access policies, the principalARN has all permissions assigned in the associated access policies and all permissions in any Kubernetes Role or ClusterRole objects that the group names are bound to.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry. You can specify one ARN for each access entry. You can't specify the same ARN in more than one access entry. This value can't be changed after access entry creation. The valid principals differ depending on the type of the access entry in the type field. For STANDARD access entries, you can use every IAM principal type. For nodes (EC2 (for EKS Auto Mode), EC2_LINUX, EC2_WINDOWS, FARGATE_LINUX, and HYBRID_LINUX), the only valid ARN is IAM roles.  You can't use the STS session principal type with access entries because this is a temporary principal for each session and not a permanent identity that can be assigned permissions.  IAM best practices recommend using IAM roles with temporary credentials, rather than IAM users with long-term credentials.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - type: The type of the new access entry. Valid values are STANDARD, FARGATE_LINUX, EC2_LINUX, EC2_WINDOWS, EC2 (for EKS Auto Mode), HYBRID_LINUX, and HYPERPOD_LINUX.  If the principalArn is for an IAM role that's used for self-managed Amazon EC2 nodes, specify EC2_LINUX or EC2_WINDOWS. Amazon EKS grants the necessary permissions to the node for you. If the principalArn is for any other purpose, specify STANDARD. If you don't specify a value, Amazon EKS sets the value to STANDARD. If you have the access mode of the cluster set to API_AND_CONFIG_MAP, it's unnecessary to create access entries for IAM roles used with Fargate profiles or managed Amazon EC2 nodes, because Amazon EKS creates entries in the aws-auth ConfigMap for the roles. You can't change this value once you've created the access entry. If you set the value to EC2_LINUX or EC2_WINDOWS, you can't specify values for kubernetesGroups, or associate an AccessPolicy to the access entry.
    ///   - username: The username to authenticate to Kubernetes with. We recommend not specifying a username and letting Amazon EKS specify it for you. For more information about the value Amazon EKS specifies for you, or constraints before specifying your own username, see Creating access entries in the Amazon EKS User Guide.
    ///   - logger: Logger use during operation
    @inlinable
    public func createAccessEntry(
        clientRequestToken: String? = CreateAccessEntryRequest.idempotencyToken(),
        clusterName: String,
        kubernetesGroups: [String]? = nil,
        principalArn: String,
        tags: [String: String]? = nil,
        type: String? = nil,
        username: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreateAccessEntryResponse {
        let input = CreateAccessEntryRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            kubernetesGroups: kubernetesGroups, 
            principalArn: principalArn, 
            tags: tags, 
            type: type, 
            username: username
        )
        return try await self.createAccessEntry(input, logger: logger)
    }

    /// Creates an Amazon EKS add-on. Amazon EKS add-ons help to automate the provisioning and lifecycle management of common operational software for Amazon EKS clusters. For more information, see Amazon EKS add-ons in the Amazon EKS User Guide.
    @Sendable
    @inlinable
    public func createAddon(_ input: CreateAddonRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreateAddonResponse {
        try await self.client.execute(
            operation: "CreateAddon", 
            path: "/clusters/{clusterName}/addons", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates an Amazon EKS add-on. Amazon EKS add-ons help to automate the provisioning and lifecycle management of common operational software for Amazon EKS clusters. For more information, see Amazon EKS add-ons in the Amazon EKS User Guide.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by DescribeAddonVersions.
    ///   - addonVersion: The version of the add-on. The version must match one of the versions returned by  DescribeAddonVersions .
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - configurationValues: The set of configuration values for the add-on that's created. The values that you provide are validated against the schema returned by DescribeAddonConfiguration.
    ///   - namespaceConfig: The namespace configuration for the addon. If specified, this will override the default namespace for the addon.
    ///   - podIdentityAssociations: An array of EKS Pod Identity associations to be created. Each association maps a Kubernetes service account to an IAM role. For more information, see Attach an IAM Role to an Amazon EKS add-on using EKS Pod Identity in the Amazon EKS User Guide.
    ///   - resolveConflicts: How to resolve field value conflicts for an Amazon EKS add-on. Conflicts are handled based on the value you choose:    None – If the self-managed version of the add-on is installed on your cluster, Amazon EKS doesn't change the value. Creation of the add-on might fail.    Overwrite – If the self-managed version of the add-on is installed on your cluster and the Amazon EKS default value is different than the existing value, Amazon EKS changes the value to the Amazon EKS default value.    Preserve – This is similar to the NONE option. If the self-managed version of the add-on is installed on your cluster Amazon EKS doesn't change the add-on resource properties. Creation of the add-on might fail if conflicts are detected. This option works differently during the update operation. For more information, see  UpdateAddon .   If you don't currently have the self-managed version of the add-on installed on your cluster, the Amazon EKS add-on is installed. Amazon EKS sets all values to default values, regardless of the option that you specify.
    ///   - serviceAccountRoleArn: The Amazon Resource Name (ARN) of an existing IAM role to bind to the add-on's service account. The role must be assigned the IAM permissions required by the add-on. If you don't specify an existing IAM role, then the add-on uses the permissions assigned to the node IAM role. For more information, see Amazon EKS node IAM role in the Amazon EKS User Guide.  To specify an existing IAM role, you must have an IAM OpenID Connect (OIDC) provider created for your cluster. For more information, see Enabling IAM roles for service accounts on your cluster in the Amazon EKS User Guide.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - logger: Logger use during operation
    @inlinable
    public func createAddon(
        addonName: String,
        addonVersion: String? = nil,
        clientRequestToken: String? = CreateAddonRequest.idempotencyToken(),
        clusterName: String,
        configurationValues: String? = nil,
        namespaceConfig: AddonNamespaceConfigRequest? = nil,
        podIdentityAssociations: [AddonPodIdentityAssociations]? = nil,
        resolveConflicts: ResolveConflicts? = nil,
        serviceAccountRoleArn: String? = nil,
        tags: [String: String]? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreateAddonResponse {
        let input = CreateAddonRequest(
            addonName: addonName, 
            addonVersion: addonVersion, 
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            configurationValues: configurationValues, 
            namespaceConfig: namespaceConfig, 
            podIdentityAssociations: podIdentityAssociations, 
            resolveConflicts: resolveConflicts, 
            serviceAccountRoleArn: serviceAccountRoleArn, 
            tags: tags
        )
        return try await self.createAddon(input, logger: logger)
    }

    /// Creates an Amazon EKS control plane. The Amazon EKS control plane consists of control plane instances that run the Kubernetes software, such as etcd and the API server. The control plane runs in an account managed by Amazon Web Services, and the Kubernetes API is exposed by the Amazon EKS API server endpoint. Each Amazon EKS cluster control plane is single tenant and unique. It runs on its own set of Amazon EC2 instances. The cluster control plane is provisioned across multiple Availability Zones and fronted by an Elastic Load Balancing Network Load Balancer. Amazon EKS also provisions elastic network interfaces in your VPC subnets to provide connectivity from the control plane instances to the nodes (for example, to support kubectl exec, logs, and proxy data flows). Amazon EKS nodes run in your Amazon Web Services account and connect to your cluster's control plane over the Kubernetes API server endpoint and a certificate file that is created for your cluster. You can use the endpointPublicAccess and endpointPrivateAccess parameters to enable or disable public and private access to your cluster's Kubernetes API server endpoint. By default, public access is enabled, and private access is disabled. The endpoint domain name and IP address family depends on the value of the ipFamily for the cluster. For more information, see Amazon EKS Cluster Endpoint Access Control in the  Amazon EKS User Guide .  You can use the logging parameter to enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs. By default, cluster control plane logs aren't exported to CloudWatch Logs. For more information, see Amazon EKS Cluster Control Plane Logs in the  Amazon EKS User Guide .  CloudWatch Logs ingestion, archive storage, and data scanning rates apply to exported control plane logs. For more information, see CloudWatch Pricing.  In most cases, it takes several minutes to create a cluster. After you create an Amazon EKS cluster, you must configure your Kubernetes tooling to communicate with the API server and launch nodes into your cluster. For more information, see Allowing users to access your cluster and Launching Amazon EKS nodes in the Amazon EKS User Guide.
    @Sendable
    @inlinable
    public func createCluster(_ input: CreateClusterRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreateClusterResponse {
        try await self.client.execute(
            operation: "CreateCluster", 
            path: "/clusters", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates an Amazon EKS control plane. The Amazon EKS control plane consists of control plane instances that run the Kubernetes software, such as etcd and the API server. The control plane runs in an account managed by Amazon Web Services, and the Kubernetes API is exposed by the Amazon EKS API server endpoint. Each Amazon EKS cluster control plane is single tenant and unique. It runs on its own set of Amazon EC2 instances. The cluster control plane is provisioned across multiple Availability Zones and fronted by an Elastic Load Balancing Network Load Balancer. Amazon EKS also provisions elastic network interfaces in your VPC subnets to provide connectivity from the control plane instances to the nodes (for example, to support kubectl exec, logs, and proxy data flows). Amazon EKS nodes run in your Amazon Web Services account and connect to your cluster's control plane over the Kubernetes API server endpoint and a certificate file that is created for your cluster. You can use the endpointPublicAccess and endpointPrivateAccess parameters to enable or disable public and private access to your cluster's Kubernetes API server endpoint. By default, public access is enabled, and private access is disabled. The endpoint domain name and IP address family depends on the value of the ipFamily for the cluster. For more information, see Amazon EKS Cluster Endpoint Access Control in the  Amazon EKS User Guide .  You can use the logging parameter to enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs. By default, cluster control plane logs aren't exported to CloudWatch Logs. For more information, see Amazon EKS Cluster Control Plane Logs in the  Amazon EKS User Guide .  CloudWatch Logs ingestion, archive storage, and data scanning rates apply to exported control plane logs. For more information, see CloudWatch Pricing.  In most cases, it takes several minutes to create a cluster. After you create an Amazon EKS cluster, you must configure your Kubernetes tooling to communicate with the API server and launch nodes into your cluster. For more information, see Allowing users to access your cluster and Launching Amazon EKS nodes in the Amazon EKS User Guide.
    ///
    /// Parameters:
    ///   - accessConfig: The access configuration for the cluster.
    ///   - bootstrapSelfManagedAddons: If you set this value to False when creating a cluster, the default networking add-ons will not be installed. The default networking add-ons include vpc-cni, coredns, and kube-proxy. Use this option when you plan to install third-party alternative add-ons or self-manage the default networking add-ons.
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - computeConfig: Enable or disable the compute capability of EKS Auto Mode when creating your EKS Auto Mode cluster. If the compute capability is enabled, EKS Auto Mode will create and delete EC2 Managed Instances in your Amazon Web Services account
    ///   - deletionProtection: Indicates whether to enable deletion protection for the cluster. When enabled, the cluster  cannot be deleted unless deletion protection is first disabled. This helps prevent  accidental cluster deletion. Default value is false.
    ///   - encryptionConfig: The encryption configuration for the cluster.
    ///   - kubernetesNetworkConfig: The Kubernetes network configuration for the cluster.
    ///   - logging: Enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs . By default, cluster control plane logs aren't exported to CloudWatch Logs . For more information, see Amazon EKS Cluster control plane logs in the  Amazon EKS User Guide .  CloudWatch Logs ingestion, archive storage, and data scanning rates apply to exported control plane logs. For more information, see CloudWatch Pricing.
    ///   - name: The unique name to give to your cluster. The name can contain only alphanumeric characters (case-sensitive),
    ///   - outpostConfig: An object representing the configuration of your local Amazon EKS cluster on an Amazon Web Services Outpost. Before creating a local cluster on an Outpost, review Local clusters for Amazon EKS on Amazon Web Services Outposts in the Amazon EKS User Guide. This object isn't available for creating Amazon EKS clusters on the Amazon Web Services cloud.
    ///   - remoteNetworkConfig: The configuration in the cluster for EKS Hybrid Nodes. You can add, change, or remove this configuration after the cluster is created.
    ///   - resourcesVpcConfig: The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide. You must specify at least two subnets. You can specify up to five security groups. However, we recommend that you use a dedicated security group for your cluster control plane.
    ///   - roleArn: The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to Amazon Web Services API operations on your behalf. For more information, see Amazon EKS Service IAM Role in the  Amazon EKS User Guide .
    ///   - storageConfig: Enable or disable the block storage capability of EKS Auto Mode when creating your EKS Auto Mode cluster. If the block storage capability is enabled, EKS Auto Mode will create and delete EBS volumes in your Amazon Web Services account.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - upgradePolicy: New clusters, by default, have extended support enabled. You can disable extended support when creating a cluster by setting this value to STANDARD.
    ///   - version: The desired Kubernetes version for your cluster. If you don't specify a value here, the default version available in Amazon EKS is used.  The default version might not be the latest version available.
    ///   - zonalShiftConfig: Enable or disable ARC zonal shift for the cluster. If zonal shift is enabled, Amazon Web Services configures zonal autoshift for the cluster. Zonal shift is a feature of Amazon Application Recovery Controller (ARC). ARC zonal shift is designed to be a temporary measure that allows you to move traffic for a resource away from an impaired AZ until the zonal shift expires or you cancel it. You can extend the zonal shift if necessary. You can start a zonal shift for an Amazon EKS cluster, or you can allow Amazon Web Services to do it for you by enabling zonal autoshift. This shift updates the flow of east-to-west network traffic in your cluster to only consider network endpoints for Pods running on worker nodes in healthy AZs. Additionally, any ALB or NLB handling ingress traffic for applications in your Amazon EKS cluster will automatically route traffic to targets in the healthy AZs. For more information about zonal shift in EKS, see Learn about Amazon Application Recovery Controller (ARC) Zonal Shift in Amazon EKS in the  Amazon EKS User Guide .
    ///   - logger: Logger use during operation
    @inlinable
    public func createCluster(
        accessConfig: CreateAccessConfigRequest? = nil,
        bootstrapSelfManagedAddons: Bool? = nil,
        clientRequestToken: String? = CreateClusterRequest.idempotencyToken(),
        computeConfig: ComputeConfigRequest? = nil,
        deletionProtection: Bool? = nil,
        encryptionConfig: [EncryptionConfig]? = nil,
        kubernetesNetworkConfig: KubernetesNetworkConfigRequest? = nil,
        logging: Logging? = nil,
        name: String,
        outpostConfig: OutpostConfigRequest? = nil,
        remoteNetworkConfig: RemoteNetworkConfigRequest? = nil,
        resourcesVpcConfig: VpcConfigRequest,
        roleArn: String,
        storageConfig: StorageConfigRequest? = nil,
        tags: [String: String]? = nil,
        upgradePolicy: UpgradePolicyRequest? = nil,
        version: String? = nil,
        zonalShiftConfig: ZonalShiftConfigRequest? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreateClusterResponse {
        let input = CreateClusterRequest(
            accessConfig: accessConfig, 
            bootstrapSelfManagedAddons: bootstrapSelfManagedAddons, 
            clientRequestToken: clientRequestToken, 
            computeConfig: computeConfig, 
            deletionProtection: deletionProtection, 
            encryptionConfig: encryptionConfig, 
            kubernetesNetworkConfig: kubernetesNetworkConfig, 
            logging: logging, 
            name: name, 
            outpostConfig: outpostConfig, 
            remoteNetworkConfig: remoteNetworkConfig, 
            resourcesVpcConfig: resourcesVpcConfig, 
            roleArn: roleArn, 
            storageConfig: storageConfig, 
            tags: tags, 
            upgradePolicy: upgradePolicy, 
            version: version, 
            zonalShiftConfig: zonalShiftConfig
        )
        return try await self.createCluster(input, logger: logger)
    }

    /// Creates an EKS Anywhere subscription. When a subscription is created, it is a contract agreement for the length of the term specified in the request. Licenses that are used to validate support are provisioned in Amazon Web Services License Manager and the caller account is granted access to EKS Anywhere Curated Packages.
    @Sendable
    @inlinable
    public func createEksAnywhereSubscription(_ input: CreateEksAnywhereSubscriptionRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreateEksAnywhereSubscriptionResponse {
        try await self.client.execute(
            operation: "CreateEksAnywhereSubscription", 
            path: "/eks-anywhere-subscriptions", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates an EKS Anywhere subscription. When a subscription is created, it is a contract agreement for the length of the term specified in the request. Licenses that are used to validate support are provisioned in Amazon Web Services License Manager and the caller account is granted access to EKS Anywhere Curated Packages.
    ///
    /// Parameters:
    ///   - autoRenew: A boolean indicating whether the subscription auto renews at the end of the term.
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - licenseQuantity: The number of licenses to purchase with the subscription. Valid values are between 1 and 100. This value can't be changed after creating the subscription.
    ///   - licenseType: The license type for all licenses in the subscription. Valid value is CLUSTER. With the CLUSTER license type, each license covers support for a single EKS Anywhere cluster.
    ///   - name: The unique name for your subscription. It must be unique in your Amazon Web Services account in the Amazon Web Services Region you're creating the subscription in. The name can contain only alphanumeric characters (case-sensitive), hyphens, and underscores. It must start with an alphabetic character and can't be longer than 100 characters.
    ///   - tags: The metadata for a subscription to assist with categorization and organization. Each tag consists of a key and an optional value. Subscription tags don't propagate to any other resources associated with the subscription.
    ///   - term: An object representing the term duration and term unit type of your subscription. This determines the term length of your subscription. Valid values are MONTHS for term unit and 12 or 36 for term duration, indicating a 12 month or 36 month subscription. This value cannot be changed after creating the subscription.
    ///   - logger: Logger use during operation
    @inlinable
    public func createEksAnywhereSubscription(
        autoRenew: Bool? = nil,
        clientRequestToken: String? = CreateEksAnywhereSubscriptionRequest.idempotencyToken(),
        licenseQuantity: Int? = nil,
        licenseType: EksAnywhereSubscriptionLicenseType? = nil,
        name: String,
        tags: [String: String]? = nil,
        term: EksAnywhereSubscriptionTerm,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreateEksAnywhereSubscriptionResponse {
        let input = CreateEksAnywhereSubscriptionRequest(
            autoRenew: autoRenew, 
            clientRequestToken: clientRequestToken, 
            licenseQuantity: licenseQuantity, 
            licenseType: licenseType, 
            name: name, 
            tags: tags, 
            term: term
        )
        return try await self.createEksAnywhereSubscription(input, logger: logger)
    }

    /// Creates an Fargate profile for your Amazon EKS cluster. You must have at least one Fargate profile in a cluster to be able to run pods on Fargate. The Fargate profile allows an administrator to declare which pods run on Fargate and specify which pods run on which Fargate profile. This declaration is done through the profile's selectors. Each profile can have up to five selectors that contain a namespace and labels. A namespace is required for every selector. The label field consists of multiple optional key-value pairs. Pods that match the selectors are scheduled on Fargate. If a to-be-scheduled pod matches any of the selectors in the Fargate profile, then that pod is run on Fargate. When you create a Fargate profile, you must specify a pod execution role to use with the pods that are scheduled with the profile. This role is added to the cluster's Kubernetes Role Based Access Control (RBAC) for authorization so that the kubelet that is running on the Fargate infrastructure can register with your Amazon EKS cluster so that it can appear in your cluster as a node. The pod execution role also provides IAM permissions to the Fargate infrastructure to allow read access to Amazon ECR image repositories. For more information, see Pod Execution Role in the Amazon EKS User Guide. Fargate profiles are immutable. However, you can create a new updated profile to replace an existing profile and then delete the original after the updated profile has finished creating. If any Fargate profiles in a cluster are in the DELETING status, you must wait for that Fargate profile to finish deleting before you can create any other profiles in that cluster. For more information, see Fargate profile in the Amazon EKS User Guide.
    @Sendable
    @inlinable
    public func createFargateProfile(_ input: CreateFargateProfileRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreateFargateProfileResponse {
        try await self.client.execute(
            operation: "CreateFargateProfile", 
            path: "/clusters/{clusterName}/fargate-profiles", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates an Fargate profile for your Amazon EKS cluster. You must have at least one Fargate profile in a cluster to be able to run pods on Fargate. The Fargate profile allows an administrator to declare which pods run on Fargate and specify which pods run on which Fargate profile. This declaration is done through the profile's selectors. Each profile can have up to five selectors that contain a namespace and labels. A namespace is required for every selector. The label field consists of multiple optional key-value pairs. Pods that match the selectors are scheduled on Fargate. If a to-be-scheduled pod matches any of the selectors in the Fargate profile, then that pod is run on Fargate. When you create a Fargate profile, you must specify a pod execution role to use with the pods that are scheduled with the profile. This role is added to the cluster's Kubernetes Role Based Access Control (RBAC) for authorization so that the kubelet that is running on the Fargate infrastructure can register with your Amazon EKS cluster so that it can appear in your cluster as a node. The pod execution role also provides IAM permissions to the Fargate infrastructure to allow read access to Amazon ECR image repositories. For more information, see Pod Execution Role in the Amazon EKS User Guide. Fargate profiles are immutable. However, you can create a new updated profile to replace an existing profile and then delete the original after the updated profile has finished creating. If any Fargate profiles in a cluster are in the DELETING status, you must wait for that Fargate profile to finish deleting before you can create any other profiles in that cluster. For more information, see Fargate profile in the Amazon EKS User Guide.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - fargateProfileName: The name of the Fargate profile.
    ///   - podExecutionRoleArn: The Amazon Resource Name (ARN) of the Pod execution role to use for a Pod that matches the selectors in the Fargate profile. The Pod execution role allows Fargate infrastructure to register with your cluster as a node, and it provides read access to Amazon ECR image repositories. For more information, see  Pod execution role in the Amazon EKS User Guide.
    ///   - selectors: The selectors to match for a Pod to use this Fargate profile. Each selector must have an associated Kubernetes namespace. Optionally, you can also specify labels for a namespace. You may specify up to five selectors in a Fargate profile.
    ///   - subnets: The IDs of subnets to launch a Pod into. A Pod running on Fargate isn't assigned a public IP address, so only private subnets (with no direct route to an Internet Gateway) are accepted for this parameter.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - logger: Logger use during operation
    @inlinable
    public func createFargateProfile(
        clientRequestToken: String? = CreateFargateProfileRequest.idempotencyToken(),
        clusterName: String,
        fargateProfileName: String,
        podExecutionRoleArn: String,
        selectors: [FargateProfileSelector]? = nil,
        subnets: [String]? = nil,
        tags: [String: String]? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreateFargateProfileResponse {
        let input = CreateFargateProfileRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            fargateProfileName: fargateProfileName, 
            podExecutionRoleArn: podExecutionRoleArn, 
            selectors: selectors, 
            subnets: subnets, 
            tags: tags
        )
        return try await self.createFargateProfile(input, logger: logger)
    }

    /// Creates a managed node group for an Amazon EKS cluster. You can only create a node group for your cluster that is equal to the current Kubernetes version for the cluster. All node groups are created with the latest AMI release version for the respective minor Kubernetes version of the cluster, unless you deploy a custom AMI using a launch template. For later updates, you will only be able to update a node group using a launch template only if it was originally deployed with a launch template. Additionally, the launch template ID or name must match what was used when the node group was created. You can update the launch template version with necessary changes. For more information about using launch templates, see Customizing managed nodes with launch templates. An Amazon EKS managed node group is an Amazon EC2 Auto Scaling group and associated Amazon EC2 instances that are managed by Amazon Web Services for an Amazon EKS cluster. For more information, see Managed node groups in the Amazon EKS User Guide.  Windows AMI types are only supported for commercial Amazon Web Services Regions that support Windows on Amazon EKS.
    @Sendable
    @inlinable
    public func createNodegroup(_ input: CreateNodegroupRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreateNodegroupResponse {
        try await self.client.execute(
            operation: "CreateNodegroup", 
            path: "/clusters/{clusterName}/node-groups", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates a managed node group for an Amazon EKS cluster. You can only create a node group for your cluster that is equal to the current Kubernetes version for the cluster. All node groups are created with the latest AMI release version for the respective minor Kubernetes version of the cluster, unless you deploy a custom AMI using a launch template. For later updates, you will only be able to update a node group using a launch template only if it was originally deployed with a launch template. Additionally, the launch template ID or name must match what was used when the node group was created. You can update the launch template version with necessary changes. For more information about using launch templates, see Customizing managed nodes with launch templates. An Amazon EKS managed node group is an Amazon EC2 Auto Scaling group and associated Amazon EC2 instances that are managed by Amazon Web Services for an Amazon EKS cluster. For more information, see Managed node groups in the Amazon EKS User Guide.  Windows AMI types are only supported for commercial Amazon Web Services Regions that support Windows on Amazon EKS.
    ///
    /// Parameters:
    ///   - amiType: The AMI type for your node group. If you specify launchTemplate, and your launch template uses a custom AMI, then don't specify amiType, or the node group  deployment will fail. If your launch template uses a Windows custom AMI, then add eks:kube-proxy-windows to your Windows nodes rolearn in the aws-auth ConfigMap. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - capacityType: The capacity type for your node group.
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - diskSize: The root device disk size (in GiB) for your node group instances. The default disk size is 20 GiB for Linux and Bottlerocket. The default disk size is 50 GiB for Windows. If you specify launchTemplate, then don't specify  diskSize, or the node group  deployment will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - instanceTypes: Specify the instance types for a node group. If you specify a GPU instance type, make sure to also specify an applicable GPU AMI type with the amiType parameter. If you specify launchTemplate, then you can specify zero or one instance type in your launch template or you can specify 0-20 instance types for instanceTypes. If however, you specify an instance type in your launch template and specify any instanceTypes, the node group deployment will fail. If you don't specify an instance type in a launch template or for instanceTypes, then t3.medium is used, by default. If you specify Spot for capacityType, then we recommend specifying multiple values for instanceTypes. For more information, see Managed node group capacity types and Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - labels: The Kubernetes labels to apply to the nodes in the node group when they are created.
    ///   - launchTemplate: An object representing a node group's launch template specification. When using this object, don't directly specify instanceTypes, diskSize, or remoteAccess. You cannot later specify a different launch template ID or name than what was used to create the node group. Make sure that the launch template meets the requirements in launchTemplateSpecification. Also refer to Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - nodegroupName: The unique name to give your node group.
    ///   - nodeRepairConfig: The node auto repair configuration for the node group.
    ///   - nodeRole: The Amazon Resource Name (ARN) of the IAM role to associate with your node group. The Amazon EKS worker node kubelet daemon makes calls to Amazon Web Services APIs on your behalf. Nodes receive permissions for these API calls through an IAM instance profile and associated policies. Before you can launch nodes and register them into a cluster, you must create an IAM role for those nodes to use when they are launched. For more information, see Amazon EKS node IAM role in the  Amazon EKS User Guide . If you specify launchTemplate, then don't specify   IamInstanceProfile in your launch template, or the node group  deployment will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - releaseVersion: The AMI version of the Amazon EKS optimized AMI to use with your node group. By default, the latest available AMI version for the node group's current Kubernetes version is used. For information about Linux versions, see Amazon EKS optimized Amazon Linux AMI versions in the Amazon EKS User Guide. Amazon EKS managed node groups support the November 2022 and later releases of the Windows AMIs. For information about Windows versions, see Amazon EKS optimized Windows AMI versions in the Amazon EKS User Guide. If you specify launchTemplate, and your launch template uses a custom AMI, then don't specify  releaseVersion, or the node group  deployment will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - remoteAccess: The remote access configuration to use with your node group. For Linux, the protocol is SSH. For Windows, the protocol is RDP. If you specify launchTemplate, then don't specify  remoteAccess, or the node group  deployment will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - scalingConfig: The scaling configuration details for the Auto Scaling group that is created for your node group.
    ///   - subnets: The subnets to use for the Auto Scaling group that is created for your node group. If you specify launchTemplate, then don't specify   SubnetId in your launch template, or the node group  deployment will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - taints: The Kubernetes taints to be applied to the nodes in the node group. For more information, see Node taints on managed node groups.
    ///   - updateConfig: The node group update configuration.
    ///   - version: The Kubernetes version to use for your managed nodes. By default, the Kubernetes version of the cluster is used, and this is the only accepted specified value. If you specify launchTemplate, and your launch template uses a custom AMI, then don't specify  version, or the node group  deployment will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - logger: Logger use during operation
    @inlinable
    public func createNodegroup(
        amiType: AMITypes? = nil,
        capacityType: CapacityTypes? = nil,
        clientRequestToken: String? = CreateNodegroupRequest.idempotencyToken(),
        clusterName: String,
        diskSize: Int? = nil,
        instanceTypes: [String]? = nil,
        labels: [String: String]? = nil,
        launchTemplate: LaunchTemplateSpecification? = nil,
        nodegroupName: String,
        nodeRepairConfig: NodeRepairConfig? = nil,
        nodeRole: String,
        releaseVersion: String? = nil,
        remoteAccess: RemoteAccessConfig? = nil,
        scalingConfig: NodegroupScalingConfig? = nil,
        subnets: [String],
        tags: [String: String]? = nil,
        taints: [Taint]? = nil,
        updateConfig: NodegroupUpdateConfig? = nil,
        version: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreateNodegroupResponse {
        let input = CreateNodegroupRequest(
            amiType: amiType, 
            capacityType: capacityType, 
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            diskSize: diskSize, 
            instanceTypes: instanceTypes, 
            labels: labels, 
            launchTemplate: launchTemplate, 
            nodegroupName: nodegroupName, 
            nodeRepairConfig: nodeRepairConfig, 
            nodeRole: nodeRole, 
            releaseVersion: releaseVersion, 
            remoteAccess: remoteAccess, 
            scalingConfig: scalingConfig, 
            subnets: subnets, 
            tags: tags, 
            taints: taints, 
            updateConfig: updateConfig, 
            version: version
        )
        return try await self.createNodegroup(input, logger: logger)
    }

    /// Creates an EKS Pod Identity association between a service account in an Amazon EKS cluster and an IAM role with EKS Pod Identity. Use EKS Pod Identity to give temporary IAM credentials to Pods and the credentials are rotated automatically. Amazon EKS Pod Identity associations provide the ability to manage credentials for your applications, similar to the way that Amazon EC2 instance profiles provide credentials to Amazon EC2 instances. If a Pod uses a service account that has an association, Amazon EKS sets environment variables in the containers of the Pod. The environment variables configure the Amazon Web Services SDKs, including the Command Line Interface, to use the EKS Pod Identity credentials. EKS Pod Identity is a simpler method than IAM roles for service accounts, as this method doesn't use OIDC identity providers. Additionally, you can configure a role for EKS Pod Identity once, and reuse it across clusters. Similar to Amazon Web Services IAM behavior, EKS Pod Identity associations are eventually consistent, and may take several seconds to be effective after the initial API call returns successfully. You must design your applications to account for these potential delays. We recommend that you don’t include association create/updates in the critical, high-availability code paths of your application. Instead, make changes in a separate initialization or setup routine that you run less frequently. You can set a target IAM role in the same or a different account for advanced scenarios. With a target role, EKS Pod Identity automatically performs two role assumptions in sequence: first assuming the role in the association that is in this account, then using those credentials to assume the target IAM role. This process provides your Pod with temporary credentials that have the permissions defined in the target role, allowing secure access to resources in another Amazon Web Services account.
    @Sendable
    @inlinable
    public func createPodIdentityAssociation(_ input: CreatePodIdentityAssociationRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> CreatePodIdentityAssociationResponse {
        try await self.client.execute(
            operation: "CreatePodIdentityAssociation", 
            path: "/clusters/{clusterName}/pod-identity-associations", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Creates an EKS Pod Identity association between a service account in an Amazon EKS cluster and an IAM role with EKS Pod Identity. Use EKS Pod Identity to give temporary IAM credentials to Pods and the credentials are rotated automatically. Amazon EKS Pod Identity associations provide the ability to manage credentials for your applications, similar to the way that Amazon EC2 instance profiles provide credentials to Amazon EC2 instances. If a Pod uses a service account that has an association, Amazon EKS sets environment variables in the containers of the Pod. The environment variables configure the Amazon Web Services SDKs, including the Command Line Interface, to use the EKS Pod Identity credentials. EKS Pod Identity is a simpler method than IAM roles for service accounts, as this method doesn't use OIDC identity providers. Additionally, you can configure a role for EKS Pod Identity once, and reuse it across clusters. Similar to Amazon Web Services IAM behavior, EKS Pod Identity associations are eventually consistent, and may take several seconds to be effective after the initial API call returns successfully. You must design your applications to account for these potential delays. We recommend that you don’t include association create/updates in the critical, high-availability code paths of your application. Instead, make changes in a separate initialization or setup routine that you run less frequently. You can set a target IAM role in the same or a different account for advanced scenarios. With a target role, EKS Pod Identity automatically performs two role assumptions in sequence: first assuming the role in the association that is in this account, then using those credentials to assume the target IAM role. This process provides your Pod with temporary credentials that have the permissions defined in the target role, allowing secure access to resources in another Amazon Web Services account.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of the cluster to create the EKS Pod Identity association in.
    ///   - disableSessionTags: Disable the automatic sessions tags that are appended by EKS Pod Identity. EKS Pod Identity adds a pre-defined set of session tags when it assumes the role. You can use these tags to author a single role that can work across resources by allowing access to Amazon Web Services resources based on matching tags. By default, EKS Pod Identity attaches six tags, including tags for cluster name, namespace, and service account name. For the list of tags added by EKS Pod Identity, see List of session tags added by EKS Pod Identity in the Amazon EKS User Guide. Amazon Web Services compresses inline session policies, managed policy ARNs, and session tags into a packed binary format that has a separate limit. If you receive a PackedPolicyTooLarge error indicating the packed binary format has exceeded the size limit, you can attempt to reduce the size by disabling the session tags added by EKS Pod Identity.
    ///   - namespace: The name of the Kubernetes namespace inside the cluster to create the EKS Pod Identity association in. The service account and the Pods that use the service account must be in this namespace.
    ///   - roleArn: The Amazon Resource Name (ARN) of the IAM role to associate with the service account. The EKS Pod Identity agent manages credentials to assume this role for applications in the containers in the Pods that use this service account.
    ///   - serviceAccount: The name of the Kubernetes service account inside the cluster to associate the IAM credentials with.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources. The following basic restrictions apply to tags:   Maximum number of tags per resource – 50   For each resource, each tag key must be unique, and each tag key can have only one value.   Maximum key length – 128 Unicode characters in UTF-8   Maximum value length – 256 Unicode characters in UTF-8   If your tagging schema is used across multiple services and resources, remember that other services may have restrictions on allowed characters. Generally allowed characters are: letters, numbers, and spaces representable in UTF-8, and the following characters: + - = . _ : / @.   Tag keys and values are case-sensitive.   Do not use aws:, AWS:, or any upper or lowercase combination of such as a prefix for either keys or values as it is reserved for Amazon Web Services use. You cannot edit or delete tag keys or values with this prefix. Tags with this prefix do not count against your tags per resource limit.
    ///   - targetRoleArn: The Amazon Resource Name (ARN) of the target IAM role to associate with the service account. This role is assumed by using the EKS Pod Identity association role, then the credentials for this role are injected into the Pod. When you run applications on Amazon EKS, your application might need to access Amazon Web Services resources from a different role that exists in the same or different Amazon Web Services account. For example, your application running in “Account A” might need to access resources, such as Amazon S3 buckets in “Account B” or within “Account A” itself. You can create a association to access Amazon Web Services resources in “Account B” by creating two IAM roles: a role in “Account A” and a role in “Account B” (which can be the same or different account), each with the necessary trust and permission policies. After you provide these roles in the IAM role and Target IAM role fields, EKS will perform role chaining to ensure your application gets the required permissions. This means Role A will assume Role B, allowing your Pods to securely access resources like S3 buckets in the target account.
    ///   - logger: Logger use during operation
    @inlinable
    public func createPodIdentityAssociation(
        clientRequestToken: String? = CreatePodIdentityAssociationRequest.idempotencyToken(),
        clusterName: String,
        disableSessionTags: Bool? = nil,
        namespace: String,
        roleArn: String,
        serviceAccount: String,
        tags: [String: String]? = nil,
        targetRoleArn: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> CreatePodIdentityAssociationResponse {
        let input = CreatePodIdentityAssociationRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            disableSessionTags: disableSessionTags, 
            namespace: namespace, 
            roleArn: roleArn, 
            serviceAccount: serviceAccount, 
            tags: tags, 
            targetRoleArn: targetRoleArn
        )
        return try await self.createPodIdentityAssociation(input, logger: logger)
    }

    /// Deletes an access entry. Deleting an access entry of a type other than Standard can cause your cluster to function improperly. If you delete an access entry in error, you can recreate it.
    @Sendable
    @inlinable
    public func deleteAccessEntry(_ input: DeleteAccessEntryRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeleteAccessEntryResponse {
        try await self.client.execute(
            operation: "DeleteAccessEntry", 
            path: "/clusters/{clusterName}/access-entries/{principalArn}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes an access entry. Deleting an access entry of a type other than Standard can cause your cluster to function improperly. If you delete an access entry in error, you can recreate it.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry.
    ///   - logger: Logger use during operation
    @inlinable
    public func deleteAccessEntry(
        clusterName: String,
        principalArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeleteAccessEntryResponse {
        let input = DeleteAccessEntryRequest(
            clusterName: clusterName, 
            principalArn: principalArn
        )
        return try await self.deleteAccessEntry(input, logger: logger)
    }

    /// Deletes an Amazon EKS add-on. When you remove an add-on, it's deleted from the cluster. You can always manually start an add-on on the cluster using the Kubernetes API.
    @Sendable
    @inlinable
    public func deleteAddon(_ input: DeleteAddonRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeleteAddonResponse {
        try await self.client.execute(
            operation: "DeleteAddon", 
            path: "/clusters/{clusterName}/addons/{addonName}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes an Amazon EKS add-on. When you remove an add-on, it's deleted from the cluster. You can always manually start an add-on on the cluster using the Kubernetes API.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - clusterName: The name of your cluster.
    ///   - preserve: Specifying this option preserves the add-on software on your cluster but Amazon EKS stops managing any settings for the add-on. If an IAM account is associated with the add-on, it isn't removed.
    ///   - logger: Logger use during operation
    @inlinable
    public func deleteAddon(
        addonName: String,
        clusterName: String,
        preserve: Bool? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeleteAddonResponse {
        let input = DeleteAddonRequest(
            addonName: addonName, 
            clusterName: clusterName, 
            preserve: preserve
        )
        return try await self.deleteAddon(input, logger: logger)
    }

    /// Deletes an Amazon EKS cluster control plane. If you have active services in your cluster that are associated with a load balancer, you must delete those services before deleting the cluster so that the load balancers are deleted properly. Otherwise, you can have orphaned resources in your VPC that prevent you from being able to delete the VPC. For more information, see Deleting a cluster in the Amazon EKS User Guide. If you have managed node groups or Fargate profiles attached to the cluster, you must delete them first. For more information, see DeleteNodgroup and DeleteFargateProfile.
    @Sendable
    @inlinable
    public func deleteCluster(_ input: DeleteClusterRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeleteClusterResponse {
        try await self.client.execute(
            operation: "DeleteCluster", 
            path: "/clusters/{name}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes an Amazon EKS cluster control plane. If you have active services in your cluster that are associated with a load balancer, you must delete those services before deleting the cluster so that the load balancers are deleted properly. Otherwise, you can have orphaned resources in your VPC that prevent you from being able to delete the VPC. For more information, see Deleting a cluster in the Amazon EKS User Guide. If you have managed node groups or Fargate profiles attached to the cluster, you must delete them first. For more information, see DeleteNodgroup and DeleteFargateProfile.
    ///
    /// Parameters:
    ///   - name: The name of the cluster to delete.
    ///   - logger: Logger use during operation
    @inlinable
    public func deleteCluster(
        name: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeleteClusterResponse {
        let input = DeleteClusterRequest(
            name: name
        )
        return try await self.deleteCluster(input, logger: logger)
    }

    /// Deletes an expired or inactive subscription. Deleting inactive subscriptions removes them from the Amazon Web Services Management Console view and from list/describe API responses. Subscriptions can only be cancelled within 7 days of creation and are cancelled by creating a ticket in the Amazon Web Services Support Center.
    @Sendable
    @inlinable
    public func deleteEksAnywhereSubscription(_ input: DeleteEksAnywhereSubscriptionRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeleteEksAnywhereSubscriptionResponse {
        try await self.client.execute(
            operation: "DeleteEksAnywhereSubscription", 
            path: "/eks-anywhere-subscriptions/{id}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes an expired or inactive subscription. Deleting inactive subscriptions removes them from the Amazon Web Services Management Console view and from list/describe API responses. Subscriptions can only be cancelled within 7 days of creation and are cancelled by creating a ticket in the Amazon Web Services Support Center.
    ///
    /// Parameters:
    ///   - id: The ID of the subscription.
    ///   - logger: Logger use during operation
    @inlinable
    public func deleteEksAnywhereSubscription(
        id: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeleteEksAnywhereSubscriptionResponse {
        let input = DeleteEksAnywhereSubscriptionRequest(
            id: id
        )
        return try await self.deleteEksAnywhereSubscription(input, logger: logger)
    }

    /// Deletes an Fargate profile. When you delete a Fargate profile, any Pod running on Fargate that was created with the profile is deleted. If the Pod matches another Fargate profile, then it is scheduled on Fargate with that profile. If it no longer matches any Fargate profiles, then it's not scheduled on Fargate and may remain in a pending state. Only one Fargate profile in a cluster can be in the DELETING status at a time. You must wait for a Fargate profile to finish deleting before you can delete any other profiles in that cluster.
    @Sendable
    @inlinable
    public func deleteFargateProfile(_ input: DeleteFargateProfileRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeleteFargateProfileResponse {
        try await self.client.execute(
            operation: "DeleteFargateProfile", 
            path: "/clusters/{clusterName}/fargate-profiles/{fargateProfileName}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes an Fargate profile. When you delete a Fargate profile, any Pod running on Fargate that was created with the profile is deleted. If the Pod matches another Fargate profile, then it is scheduled on Fargate with that profile. If it no longer matches any Fargate profiles, then it's not scheduled on Fargate and may remain in a pending state. Only one Fargate profile in a cluster can be in the DELETING status at a time. You must wait for a Fargate profile to finish deleting before you can delete any other profiles in that cluster.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - fargateProfileName: The name of the Fargate profile to delete.
    ///   - logger: Logger use during operation
    @inlinable
    public func deleteFargateProfile(
        clusterName: String,
        fargateProfileName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeleteFargateProfileResponse {
        let input = DeleteFargateProfileRequest(
            clusterName: clusterName, 
            fargateProfileName: fargateProfileName
        )
        return try await self.deleteFargateProfile(input, logger: logger)
    }

    /// Deletes a managed node group.
    @Sendable
    @inlinable
    public func deleteNodegroup(_ input: DeleteNodegroupRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeleteNodegroupResponse {
        try await self.client.execute(
            operation: "DeleteNodegroup", 
            path: "/clusters/{clusterName}/node-groups/{nodegroupName}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes a managed node group.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - nodegroupName: The name of the node group to delete.
    ///   - logger: Logger use during operation
    @inlinable
    public func deleteNodegroup(
        clusterName: String,
        nodegroupName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeleteNodegroupResponse {
        let input = DeleteNodegroupRequest(
            clusterName: clusterName, 
            nodegroupName: nodegroupName
        )
        return try await self.deleteNodegroup(input, logger: logger)
    }

    /// Deletes a EKS Pod Identity association. The temporary Amazon Web Services credentials from the previous IAM role session might still be valid until the session expiry. If you need to immediately revoke the temporary session credentials, then go to the role in the IAM console.
    @Sendable
    @inlinable
    public func deletePodIdentityAssociation(_ input: DeletePodIdentityAssociationRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeletePodIdentityAssociationResponse {
        try await self.client.execute(
            operation: "DeletePodIdentityAssociation", 
            path: "/clusters/{clusterName}/pod-identity-associations/{associationId}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes a EKS Pod Identity association. The temporary Amazon Web Services credentials from the previous IAM role session might still be valid until the session expiry. If you need to immediately revoke the temporary session credentials, then go to the role in the IAM console.
    ///
    /// Parameters:
    ///   - associationId: The ID of the association to be deleted.
    ///   - clusterName: The cluster name that
    ///   - logger: Logger use during operation
    @inlinable
    public func deletePodIdentityAssociation(
        associationId: String,
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeletePodIdentityAssociationResponse {
        let input = DeletePodIdentityAssociationRequest(
            associationId: associationId, 
            clusterName: clusterName
        )
        return try await self.deletePodIdentityAssociation(input, logger: logger)
    }

    /// Deregisters a connected cluster to remove it from the Amazon EKS control plane. A connected cluster is a Kubernetes cluster that you've connected to your control plane using the Amazon EKS Connector.
    @Sendable
    @inlinable
    public func deregisterCluster(_ input: DeregisterClusterRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DeregisterClusterResponse {
        try await self.client.execute(
            operation: "DeregisterCluster", 
            path: "/cluster-registrations/{name}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deregisters a connected cluster to remove it from the Amazon EKS control plane. A connected cluster is a Kubernetes cluster that you've connected to your control plane using the Amazon EKS Connector.
    ///
    /// Parameters:
    ///   - name: The name of the connected cluster to deregister.
    ///   - logger: Logger use during operation
    @inlinable
    public func deregisterCluster(
        name: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DeregisterClusterResponse {
        let input = DeregisterClusterRequest(
            name: name
        )
        return try await self.deregisterCluster(input, logger: logger)
    }

    /// Describes an access entry.
    @Sendable
    @inlinable
    public func describeAccessEntry(_ input: DescribeAccessEntryRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeAccessEntryResponse {
        try await self.client.execute(
            operation: "DescribeAccessEntry", 
            path: "/clusters/{clusterName}/access-entries/{principalArn}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes an access entry.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeAccessEntry(
        clusterName: String,
        principalArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeAccessEntryResponse {
        let input = DescribeAccessEntryRequest(
            clusterName: clusterName, 
            principalArn: principalArn
        )
        return try await self.describeAccessEntry(input, logger: logger)
    }

    /// Describes an Amazon EKS add-on.
    @Sendable
    @inlinable
    public func describeAddon(_ input: DescribeAddonRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeAddonResponse {
        try await self.client.execute(
            operation: "DescribeAddon", 
            path: "/clusters/{clusterName}/addons/{addonName}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes an Amazon EKS add-on.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - clusterName: The name of your cluster.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeAddon(
        addonName: String,
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeAddonResponse {
        let input = DescribeAddonRequest(
            addonName: addonName, 
            clusterName: clusterName
        )
        return try await self.describeAddon(input, logger: logger)
    }

    /// Returns configuration options.
    @Sendable
    @inlinable
    public func describeAddonConfiguration(_ input: DescribeAddonConfigurationRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeAddonConfigurationResponse {
        try await self.client.execute(
            operation: "DescribeAddonConfiguration", 
            path: "/addons/configuration-schemas", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Returns configuration options.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by DescribeAddonVersions.
    ///   - addonVersion: The version of the add-on. The version must match one of the versions returned by  DescribeAddonVersions .
    ///   - logger: Logger use during operation
    @inlinable
    public func describeAddonConfiguration(
        addonName: String,
        addonVersion: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeAddonConfigurationResponse {
        let input = DescribeAddonConfigurationRequest(
            addonName: addonName, 
            addonVersion: addonVersion
        )
        return try await self.describeAddonConfiguration(input, logger: logger)
    }

    /// Describes the versions for an add-on. Information such as the Kubernetes versions that you can use the add-on with, the owner, publisher, and the type of the add-on are returned.
    @Sendable
    @inlinable
    public func describeAddonVersions(_ input: DescribeAddonVersionsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeAddonVersionsResponse {
        try await self.client.execute(
            operation: "DescribeAddonVersions", 
            path: "/addons/supported-versions", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes the versions for an add-on. Information such as the Kubernetes versions that you can use the add-on with, the owner, publisher, and the type of the add-on are returned.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - kubernetesVersion: The Kubernetes versions that you can use the add-on with.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - owners: The owner of the add-on. For valid owners, don't specify a value for this property.
    ///   - publishers: The publisher of the add-on. For valid publishers, don't specify a value for this property.
    ///   - types: The type of the add-on. For valid types, don't specify a value for this property.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeAddonVersions(
        addonName: String? = nil,
        kubernetesVersion: String? = nil,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        owners: [String]? = nil,
        publishers: [String]? = nil,
        types: [String]? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeAddonVersionsResponse {
        let input = DescribeAddonVersionsRequest(
            addonName: addonName, 
            kubernetesVersion: kubernetesVersion, 
            maxResults: maxResults, 
            nextToken: nextToken, 
            owners: owners, 
            publishers: publishers, 
            types: types
        )
        return try await self.describeAddonVersions(input, logger: logger)
    }

    /// Describes an Amazon EKS cluster. The API server endpoint and certificate authority data returned by this operation are required for kubelet and kubectl to communicate with your Kubernetes API server. For more information, see Creating or updating a kubeconfig file for an Amazon EKS cluster.  The API server endpoint and certificate authority data aren't available until the cluster reaches the ACTIVE state.
    @Sendable
    @inlinable
    public func describeCluster(_ input: DescribeClusterRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeClusterResponse {
        try await self.client.execute(
            operation: "DescribeCluster", 
            path: "/clusters/{name}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes an Amazon EKS cluster. The API server endpoint and certificate authority data returned by this operation are required for kubelet and kubectl to communicate with your Kubernetes API server. For more information, see Creating or updating a kubeconfig file for an Amazon EKS cluster.  The API server endpoint and certificate authority data aren't available until the cluster reaches the ACTIVE state.
    ///
    /// Parameters:
    ///   - name: The name of your cluster.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeCluster(
        name: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeClusterResponse {
        let input = DescribeClusterRequest(
            name: name
        )
        return try await self.describeCluster(input, logger: logger)
    }

    /// Lists available Kubernetes versions for Amazon EKS clusters.
    @Sendable
    @inlinable
    public func describeClusterVersions(_ input: DescribeClusterVersionsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeClusterVersionsResponse {
        try await self.client.execute(
            operation: "DescribeClusterVersions", 
            path: "/cluster-versions", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists available Kubernetes versions for Amazon EKS clusters.
    ///
    /// Parameters:
    ///   - clusterType: The type of cluster to filter versions by.
    ///   - clusterVersions: List of specific cluster versions to describe.
    ///   - defaultOnly: Filter to show only default versions.
    ///   - includeAll: Include all available versions in the response.
    ///   - maxResults: Maximum number of results to return.
    ///   - nextToken: Pagination token for the next set of results.
    ///   - versionStatus: Filter versions by their current status.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeClusterVersions(
        clusterType: String? = nil,
        clusterVersions: [String]? = nil,
        defaultOnly: Bool? = nil,
        includeAll: Bool? = nil,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        versionStatus: VersionStatus? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeClusterVersionsResponse {
        let input = DescribeClusterVersionsRequest(
            clusterType: clusterType, 
            clusterVersions: clusterVersions, 
            defaultOnly: defaultOnly, 
            includeAll: includeAll, 
            maxResults: maxResults, 
            nextToken: nextToken, 
            versionStatus: versionStatus
        )
        return try await self.describeClusterVersions(input, logger: logger)
    }

    /// Returns descriptive information about a subscription.
    @Sendable
    @inlinable
    public func describeEksAnywhereSubscription(_ input: DescribeEksAnywhereSubscriptionRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeEksAnywhereSubscriptionResponse {
        try await self.client.execute(
            operation: "DescribeEksAnywhereSubscription", 
            path: "/eks-anywhere-subscriptions/{id}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Returns descriptive information about a subscription.
    ///
    /// Parameters:
    ///   - id: The ID of the subscription.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeEksAnywhereSubscription(
        id: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeEksAnywhereSubscriptionResponse {
        let input = DescribeEksAnywhereSubscriptionRequest(
            id: id
        )
        return try await self.describeEksAnywhereSubscription(input, logger: logger)
    }

    /// Describes an Fargate profile.
    @Sendable
    @inlinable
    public func describeFargateProfile(_ input: DescribeFargateProfileRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeFargateProfileResponse {
        try await self.client.execute(
            operation: "DescribeFargateProfile", 
            path: "/clusters/{clusterName}/fargate-profiles/{fargateProfileName}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes an Fargate profile.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - fargateProfileName: The name of the Fargate profile to describe.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeFargateProfile(
        clusterName: String,
        fargateProfileName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeFargateProfileResponse {
        let input = DescribeFargateProfileRequest(
            clusterName: clusterName, 
            fargateProfileName: fargateProfileName
        )
        return try await self.describeFargateProfile(input, logger: logger)
    }

    /// Describes an identity provider configuration.
    @Sendable
    @inlinable
    public func describeIdentityProviderConfig(_ input: DescribeIdentityProviderConfigRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeIdentityProviderConfigResponse {
        try await self.client.execute(
            operation: "DescribeIdentityProviderConfig", 
            path: "/clusters/{clusterName}/identity-provider-configs/describe", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes an identity provider configuration.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - identityProviderConfig: An object representing an identity provider configuration.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeIdentityProviderConfig(
        clusterName: String,
        identityProviderConfig: IdentityProviderConfig,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeIdentityProviderConfigResponse {
        let input = DescribeIdentityProviderConfigRequest(
            clusterName: clusterName, 
            identityProviderConfig: identityProviderConfig
        )
        return try await self.describeIdentityProviderConfig(input, logger: logger)
    }

    /// Returns details about an insight that you specify using its ID.
    @Sendable
    @inlinable
    public func describeInsight(_ input: DescribeInsightRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeInsightResponse {
        try await self.client.execute(
            operation: "DescribeInsight", 
            path: "/clusters/{clusterName}/insights/{id}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Returns details about an insight that you specify using its ID.
    ///
    /// Parameters:
    ///   - clusterName: The name of the cluster to describe the insight for.
    ///   - id: The identity of the insight to describe.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeInsight(
        clusterName: String,
        id: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeInsightResponse {
        let input = DescribeInsightRequest(
            clusterName: clusterName, 
            id: id
        )
        return try await self.describeInsight(input, logger: logger)
    }

    /// Returns the status of the latest on-demand cluster insights refresh operation.
    @Sendable
    @inlinable
    public func describeInsightsRefresh(_ input: DescribeInsightsRefreshRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeInsightsRefreshResponse {
        try await self.client.execute(
            operation: "DescribeInsightsRefresh", 
            path: "/clusters/{clusterName}/insights-refresh", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Returns the status of the latest on-demand cluster insights refresh operation.
    ///
    /// Parameters:
    ///   - clusterName: The name of the cluster associated with the insights refresh operation.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeInsightsRefresh(
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeInsightsRefreshResponse {
        let input = DescribeInsightsRefreshRequest(
            clusterName: clusterName
        )
        return try await self.describeInsightsRefresh(input, logger: logger)
    }

    /// Describes a managed node group.
    @Sendable
    @inlinable
    public func describeNodegroup(_ input: DescribeNodegroupRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeNodegroupResponse {
        try await self.client.execute(
            operation: "DescribeNodegroup", 
            path: "/clusters/{clusterName}/node-groups/{nodegroupName}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes a managed node group.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - nodegroupName: The name of the node group to describe.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeNodegroup(
        clusterName: String,
        nodegroupName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeNodegroupResponse {
        let input = DescribeNodegroupRequest(
            clusterName: clusterName, 
            nodegroupName: nodegroupName
        )
        return try await self.describeNodegroup(input, logger: logger)
    }

    /// Returns descriptive information about an EKS Pod Identity association. This action requires the ID of the association. You can get the ID from the response to the CreatePodIdentityAssocation for newly created associations. Or, you can list the IDs for associations with ListPodIdentityAssociations and filter the list by namespace or service account.
    @Sendable
    @inlinable
    public func describePodIdentityAssociation(_ input: DescribePodIdentityAssociationRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribePodIdentityAssociationResponse {
        try await self.client.execute(
            operation: "DescribePodIdentityAssociation", 
            path: "/clusters/{clusterName}/pod-identity-associations/{associationId}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Returns descriptive information about an EKS Pod Identity association. This action requires the ID of the association. You can get the ID from the response to the CreatePodIdentityAssocation for newly created associations. Or, you can list the IDs for associations with ListPodIdentityAssociations and filter the list by namespace or service account.
    ///
    /// Parameters:
    ///   - associationId: The ID of the association that you want the description of.
    ///   - clusterName: The name of the cluster that the association is in.
    ///   - logger: Logger use during operation
    @inlinable
    public func describePodIdentityAssociation(
        associationId: String,
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribePodIdentityAssociationResponse {
        let input = DescribePodIdentityAssociationRequest(
            associationId: associationId, 
            clusterName: clusterName
        )
        return try await self.describePodIdentityAssociation(input, logger: logger)
    }

    /// Describes an update to an Amazon EKS resource. When the status of the update is Successful, the update is complete. If an update fails, the status is Failed, and an error detail explains the reason for the failure.
    @Sendable
    @inlinable
    public func describeUpdate(_ input: DescribeUpdateRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DescribeUpdateResponse {
        try await self.client.execute(
            operation: "DescribeUpdate", 
            path: "/clusters/{name}/updates/{updateId}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Describes an update to an Amazon EKS resource. When the status of the update is Successful, the update is complete. If an update fails, the status is Failed, and an error detail explains the reason for the failure.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons . This parameter is required if the update is an add-on update.
    ///   - name: The name of the Amazon EKS cluster associated with the update.
    ///   - nodegroupName: The name of the Amazon EKS node group associated with the update. This parameter is required if the update is a node group update.
    ///   - updateId: The ID of the update to describe.
    ///   - logger: Logger use during operation
    @inlinable
    public func describeUpdate(
        addonName: String? = nil,
        name: String,
        nodegroupName: String? = nil,
        updateId: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DescribeUpdateResponse {
        let input = DescribeUpdateRequest(
            addonName: addonName, 
            name: name, 
            nodegroupName: nodegroupName, 
            updateId: updateId
        )
        return try await self.describeUpdate(input, logger: logger)
    }

    /// Disassociates an access policy from an access entry.
    @Sendable
    @inlinable
    public func disassociateAccessPolicy(_ input: DisassociateAccessPolicyRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DisassociateAccessPolicyResponse {
        try await self.client.execute(
            operation: "DisassociateAccessPolicy", 
            path: "/clusters/{clusterName}/access-entries/{principalArn}/access-policies/{policyArn}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Disassociates an access policy from an access entry.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - policyArn: The ARN of the policy to disassociate from the access entry. For a list of associated policies ARNs, use ListAssociatedAccessPolicies.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry.
    ///   - logger: Logger use during operation
    @inlinable
    public func disassociateAccessPolicy(
        clusterName: String,
        policyArn: String,
        principalArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DisassociateAccessPolicyResponse {
        let input = DisassociateAccessPolicyRequest(
            clusterName: clusterName, 
            policyArn: policyArn, 
            principalArn: principalArn
        )
        return try await self.disassociateAccessPolicy(input, logger: logger)
    }

    /// Disassociates an identity provider configuration from a cluster. If you disassociate an identity provider from your cluster, users included in the provider can no longer access the cluster. However, you can still access the cluster with IAM principals.
    @Sendable
    @inlinable
    public func disassociateIdentityProviderConfig(_ input: DisassociateIdentityProviderConfigRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> DisassociateIdentityProviderConfigResponse {
        try await self.client.execute(
            operation: "DisassociateIdentityProviderConfig", 
            path: "/clusters/{clusterName}/identity-provider-configs/disassociate", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Disassociates an identity provider configuration from a cluster. If you disassociate an identity provider from your cluster, users included in the provider can no longer access the cluster. However, you can still access the cluster with IAM principals.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - identityProviderConfig: An object representing an identity provider configuration.
    ///   - logger: Logger use during operation
    @inlinable
    public func disassociateIdentityProviderConfig(
        clientRequestToken: String? = DisassociateIdentityProviderConfigRequest.idempotencyToken(),
        clusterName: String,
        identityProviderConfig: IdentityProviderConfig,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> DisassociateIdentityProviderConfigResponse {
        let input = DisassociateIdentityProviderConfigRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            identityProviderConfig: identityProviderConfig
        )
        return try await self.disassociateIdentityProviderConfig(input, logger: logger)
    }

    /// Lists the access entries for your cluster.
    @Sendable
    @inlinable
    public func listAccessEntries(_ input: ListAccessEntriesRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListAccessEntriesResponse {
        try await self.client.execute(
            operation: "ListAccessEntries", 
            path: "/clusters/{clusterName}/access-entries", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the access entries for your cluster.
    ///
    /// Parameters:
    ///   - associatedPolicyArn: The ARN of an AccessPolicy. When you specify an access policy ARN, only the access entries associated to that access policy are returned. For a list of available policy ARNs, use ListAccessPolicies.
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listAccessEntries(
        associatedPolicyArn: String? = nil,
        clusterName: String,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListAccessEntriesResponse {
        let input = ListAccessEntriesRequest(
            associatedPolicyArn: associatedPolicyArn, 
            clusterName: clusterName, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listAccessEntries(input, logger: logger)
    }

    /// Lists the available access policies.
    @Sendable
    @inlinable
    public func listAccessPolicies(_ input: ListAccessPoliciesRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListAccessPoliciesResponse {
        try await self.client.execute(
            operation: "ListAccessPolicies", 
            path: "/access-policies", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the available access policies.
    ///
    /// Parameters:
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listAccessPolicies(
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListAccessPoliciesResponse {
        let input = ListAccessPoliciesRequest(
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listAccessPolicies(input, logger: logger)
    }

    /// Lists the installed add-ons.
    @Sendable
    @inlinable
    public func listAddons(_ input: ListAddonsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListAddonsResponse {
        try await self.client.execute(
            operation: "ListAddons", 
            path: "/clusters/{clusterName}/addons", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the installed add-ons.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listAddons(
        clusterName: String,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListAddonsResponse {
        let input = ListAddonsRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listAddons(input, logger: logger)
    }

    /// Lists the access policies associated with an access entry.
    @Sendable
    @inlinable
    public func listAssociatedAccessPolicies(_ input: ListAssociatedAccessPoliciesRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListAssociatedAccessPoliciesResponse {
        try await self.client.execute(
            operation: "ListAssociatedAccessPolicies", 
            path: "/clusters/{clusterName}/access-entries/{principalArn}/access-policies", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the access policies associated with an access entry.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry.
    ///   - logger: Logger use during operation
    @inlinable
    public func listAssociatedAccessPolicies(
        clusterName: String,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        principalArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListAssociatedAccessPoliciesResponse {
        let input = ListAssociatedAccessPoliciesRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            nextToken: nextToken, 
            principalArn: principalArn
        )
        return try await self.listAssociatedAccessPolicies(input, logger: logger)
    }

    /// Lists the Amazon EKS clusters in your Amazon Web Services account in the specified Amazon Web Services Region.
    @Sendable
    @inlinable
    public func listClusters(_ input: ListClustersRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListClustersResponse {
        try await self.client.execute(
            operation: "ListClusters", 
            path: "/clusters", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the Amazon EKS clusters in your Amazon Web Services account in the specified Amazon Web Services Region.
    ///
    /// Parameters:
    ///   - include: Indicates whether external clusters are included in the returned list. Use 'all' to return https://docs.aws.amazon.com/eks/latest/userguide/eks-connector.htmlconnected clusters, or blank to return only Amazon EKS clusters. 'all' must be in lowercase otherwise an error occurs.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listClusters(
        include: [String]? = nil,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListClustersResponse {
        let input = ListClustersRequest(
            include: include, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listClusters(input, logger: logger)
    }

    /// Displays the full description of the subscription.
    @Sendable
    @inlinable
    public func listEksAnywhereSubscriptions(_ input: ListEksAnywhereSubscriptionsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListEksAnywhereSubscriptionsResponse {
        try await self.client.execute(
            operation: "ListEksAnywhereSubscriptions", 
            path: "/eks-anywhere-subscriptions", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Displays the full description of the subscription.
    ///
    /// Parameters:
    ///   - includeStatus: An array of subscription statuses to filter on.
    ///   - maxResults: The maximum number of cluster results returned by ListEksAnywhereSubscriptions in paginated output. When you use this parameter, ListEksAnywhereSubscriptions returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListEksAnywhereSubscriptions request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListEksAnywhereSubscriptions returns up to 10 results and a nextToken value if applicable.
    ///   - nextToken: The nextToken value returned from a previous paginated ListEksAnywhereSubscriptions request where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value.
    ///   - logger: Logger use during operation
    @inlinable
    public func listEksAnywhereSubscriptions(
        includeStatus: [EksAnywhereSubscriptionStatus]? = nil,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListEksAnywhereSubscriptionsResponse {
        let input = ListEksAnywhereSubscriptionsRequest(
            includeStatus: includeStatus, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listEksAnywhereSubscriptions(input, logger: logger)
    }

    /// Lists the Fargate profiles associated with the specified cluster in your Amazon Web Services account in the specified Amazon Web Services Region.
    @Sendable
    @inlinable
    public func listFargateProfiles(_ input: ListFargateProfilesRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListFargateProfilesResponse {
        try await self.client.execute(
            operation: "ListFargateProfiles", 
            path: "/clusters/{clusterName}/fargate-profiles", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the Fargate profiles associated with the specified cluster in your Amazon Web Services account in the specified Amazon Web Services Region.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listFargateProfiles(
        clusterName: String,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListFargateProfilesResponse {
        let input = ListFargateProfilesRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listFargateProfiles(input, logger: logger)
    }

    /// Lists the identity provider configurations for your cluster.
    @Sendable
    @inlinable
    public func listIdentityProviderConfigs(_ input: ListIdentityProviderConfigsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListIdentityProviderConfigsResponse {
        try await self.client.execute(
            operation: "ListIdentityProviderConfigs", 
            path: "/clusters/{clusterName}/identity-provider-configs", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the identity provider configurations for your cluster.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listIdentityProviderConfigs(
        clusterName: String,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListIdentityProviderConfigsResponse {
        let input = ListIdentityProviderConfigsRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listIdentityProviderConfigs(input, logger: logger)
    }

    /// Returns a list of all insights checked for against the specified cluster. You can filter which insights are returned by category, associated Kubernetes version, and status. The default filter lists all categories and every status. The following lists the available categories:    UPGRADE_READINESS: Amazon EKS identifies issues that could impact your ability to upgrade to new versions of Kubernetes. These are called upgrade insights.    MISCONFIGURATION: Amazon EKS identifies misconfiguration in your EKS Hybrid Nodes setup that could impair functionality of your cluster or workloads. These are called configuration insights.
    @Sendable
    @inlinable
    public func listInsights(_ input: ListInsightsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListInsightsResponse {
        try await self.client.execute(
            operation: "ListInsights", 
            path: "/clusters/{clusterName}/insights", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Returns a list of all insights checked for against the specified cluster. You can filter which insights are returned by category, associated Kubernetes version, and status. The default filter lists all categories and every status. The following lists the available categories:    UPGRADE_READINESS: Amazon EKS identifies issues that could impact your ability to upgrade to new versions of Kubernetes. These are called upgrade insights.    MISCONFIGURATION: Amazon EKS identifies misconfiguration in your EKS Hybrid Nodes setup that could impair functionality of your cluster or workloads. These are called configuration insights.
    ///
    /// Parameters:
    ///   - clusterName: The name of the Amazon EKS cluster associated with the insights.
    ///   - filter: The criteria to filter your list of insights for your cluster. You can filter which insights are returned by category, associated Kubernetes version, and status.
    ///   - maxResults: The maximum number of identity provider configurations returned by ListInsights in paginated output. When you use this parameter, ListInsights returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListInsights request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListInsights returns up to 100 results and a nextToken value, if applicable.
    ///   - nextToken: The nextToken value returned from a previous paginated ListInsights request. When the results of a ListInsights request exceed maxResults, you can use this value to retrieve the next page of results. This value is null when there are no more results to return.
    ///   - logger: Logger use during operation
    @inlinable
    public func listInsights(
        clusterName: String,
        filter: InsightsFilter? = nil,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListInsightsResponse {
        let input = ListInsightsRequest(
            clusterName: clusterName, 
            filter: filter, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listInsights(input, logger: logger)
    }

    /// Lists the managed node groups associated with the specified cluster in your Amazon Web Services account in the specified Amazon Web Services Region. Self-managed node groups aren't listed.
    @Sendable
    @inlinable
    public func listNodegroups(_ input: ListNodegroupsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListNodegroupsResponse {
        try await self.client.execute(
            operation: "ListNodegroups", 
            path: "/clusters/{clusterName}/node-groups", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the managed node groups associated with the specified cluster in your Amazon Web Services account in the specified Amazon Web Services Region. Self-managed node groups aren't listed.
    ///
    /// Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - logger: Logger use during operation
    @inlinable
    public func listNodegroups(
        clusterName: String,
        maxResults: Int? = nil,
        nextToken: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListNodegroupsResponse {
        let input = ListNodegroupsRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            nextToken: nextToken
        )
        return try await self.listNodegroups(input, logger: logger)
    }

    /// List the EKS Pod Identity associations in a cluster. You can filter the list by the namespace that the association is in or the service account that the association uses.
    @Sendable
    @inlinable
    public func listPodIdentityAssociations(_ input: ListPodIdentityAssociationsRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListPodIdentityAssociationsResponse {
        try await self.client.execute(
            operation: "ListPodIdentityAssociations", 
            path: "/clusters/{clusterName}/pod-identity-associations", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// List the EKS Pod Identity associations in a cluster. You can filter the list by the namespace that the association is in or the service account that the association uses.
    ///
    /// Parameters:
    ///   - clusterName: The name of the cluster that the associations are in.
    ///   - maxResults: The maximum number of EKS Pod Identity association results returned by ListPodIdentityAssociations in paginated output. When you use this parameter, ListPodIdentityAssociations returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListPodIdentityAssociations request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListPodIdentityAssociations returns up to 100 results and a nextToken value if applicable.
    ///   - namespace: The name of the Kubernetes namespace inside the cluster that the associations are in.
    ///   - nextToken: The nextToken value returned from a previous paginated ListUpdates request where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - serviceAccount: The name of the Kubernetes service account that the associations use.
    ///   - logger: Logger use during operation
    @inlinable
    public func listPodIdentityAssociations(
        clusterName: String,
        maxResults: Int? = nil,
        namespace: String? = nil,
        nextToken: String? = nil,
        serviceAccount: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListPodIdentityAssociationsResponse {
        let input = ListPodIdentityAssociationsRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            namespace: namespace, 
            nextToken: nextToken, 
            serviceAccount: serviceAccount
        )
        return try await self.listPodIdentityAssociations(input, logger: logger)
    }

    /// List the tags for an Amazon EKS resource.
    @Sendable
    @inlinable
    public func listTagsForResource(_ input: ListTagsForResourceRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListTagsForResourceResponse {
        try await self.client.execute(
            operation: "ListTagsForResource", 
            path: "/tags/{resourceArn}", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// List the tags for an Amazon EKS resource.
    ///
    /// Parameters:
    ///   - resourceArn: The Amazon Resource Name (ARN) that identifies the resource to list tags for.
    ///   - logger: Logger use during operation
    @inlinable
    public func listTagsForResource(
        resourceArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListTagsForResourceResponse {
        let input = ListTagsForResourceRequest(
            resourceArn: resourceArn
        )
        return try await self.listTagsForResource(input, logger: logger)
    }

    /// Lists the updates associated with an Amazon EKS resource in your Amazon Web Services account, in the specified Amazon Web Services Region.
    @Sendable
    @inlinable
    public func listUpdates(_ input: ListUpdatesRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> ListUpdatesResponse {
        try await self.client.execute(
            operation: "ListUpdates", 
            path: "/clusters/{name}/updates", 
            httpMethod: .GET, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Lists the updates associated with an Amazon EKS resource in your Amazon Web Services account, in the specified Amazon Web Services Region.
    ///
    /// Parameters:
    ///   - addonName: The names of the installed add-ons that have available updates.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - name: The name of the Amazon EKS cluster to list updates for.
    ///   - nextToken: The nextToken value returned from a previous paginated request, where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
    ///   - nodegroupName: The name of the Amazon EKS managed node group to list updates for.
    ///   - logger: Logger use during operation
    @inlinable
    public func listUpdates(
        addonName: String? = nil,
        maxResults: Int? = nil,
        name: String,
        nextToken: String? = nil,
        nodegroupName: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> ListUpdatesResponse {
        let input = ListUpdatesRequest(
            addonName: addonName, 
            maxResults: maxResults, 
            name: name, 
            nextToken: nextToken, 
            nodegroupName: nodegroupName
        )
        return try await self.listUpdates(input, logger: logger)
    }

    /// Connects a Kubernetes cluster to the Amazon EKS control plane.  Any Kubernetes cluster can be connected to the Amazon EKS control plane to view current information about the cluster and its nodes.  Cluster connection requires two steps. First, send a  RegisterClusterRequest to add it to the Amazon EKS control plane. Second, a Manifest containing the activationID and activationCode must be applied to the Kubernetes cluster through it's native provider to provide visibility. After the manifest is updated and applied, the connected cluster is visible to the Amazon EKS control plane. If the manifest isn't applied within three days, the connected cluster will no longer be visible and must be deregistered using DeregisterCluster.
    @Sendable
    @inlinable
    public func registerCluster(_ input: RegisterClusterRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> RegisterClusterResponse {
        try await self.client.execute(
            operation: "RegisterCluster", 
            path: "/cluster-registrations", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Connects a Kubernetes cluster to the Amazon EKS control plane.  Any Kubernetes cluster can be connected to the Amazon EKS control plane to view current information about the cluster and its nodes.  Cluster connection requires two steps. First, send a  RegisterClusterRequest to add it to the Amazon EKS control plane. Second, a Manifest containing the activationID and activationCode must be applied to the Kubernetes cluster through it's native provider to provide visibility. After the manifest is updated and applied, the connected cluster is visible to the Amazon EKS control plane. If the manifest isn't applied within three days, the connected cluster will no longer be visible and must be deregistered using DeregisterCluster.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - connectorConfig: The configuration settings required to connect the Kubernetes cluster to the Amazon EKS control plane.
    ///   - name: A unique name for this cluster in your Amazon Web Services Region.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - logger: Logger use during operation
    @inlinable
    public func registerCluster(
        clientRequestToken: String? = RegisterClusterRequest.idempotencyToken(),
        connectorConfig: ConnectorConfigRequest,
        name: String,
        tags: [String: String]? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> RegisterClusterResponse {
        let input = RegisterClusterRequest(
            clientRequestToken: clientRequestToken, 
            connectorConfig: connectorConfig, 
            name: name, 
            tags: tags
        )
        return try await self.registerCluster(input, logger: logger)
    }

    /// Initiates an on-demand refresh operation for cluster insights, getting the latest analysis outside of the standard refresh schedule.
    @Sendable
    @inlinable
    public func startInsightsRefresh(_ input: StartInsightsRefreshRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> StartInsightsRefreshResponse {
        try await self.client.execute(
            operation: "StartInsightsRefresh", 
            path: "/clusters/{clusterName}/insights-refresh", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Initiates an on-demand refresh operation for cluster insights, getting the latest analysis outside of the standard refresh schedule.
    ///
    /// Parameters:
    ///   - clusterName: The name of the cluster for the refresh insights operation.
    ///   - logger: Logger use during operation
    @inlinable
    public func startInsightsRefresh(
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> StartInsightsRefreshResponse {
        let input = StartInsightsRefreshRequest(
            clusterName: clusterName
        )
        return try await self.startInsightsRefresh(input, logger: logger)
    }

    /// Associates the specified tags to an Amazon EKS resource with the specified resourceArn. If existing tags on a resource are not specified in the request parameters, they aren't changed. When a resource is deleted, the tags associated with that resource are also deleted. Tags that you create for Amazon EKS resources don't propagate to any other resources associated with the cluster. For example, if you tag a cluster with this operation, that tag doesn't automatically propagate to the subnets and nodes associated with the cluster.
    @Sendable
    @inlinable
    public func tagResource(_ input: TagResourceRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> TagResourceResponse {
        try await self.client.execute(
            operation: "TagResource", 
            path: "/tags/{resourceArn}", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Associates the specified tags to an Amazon EKS resource with the specified resourceArn. If existing tags on a resource are not specified in the request parameters, they aren't changed. When a resource is deleted, the tags associated with that resource are also deleted. Tags that you create for Amazon EKS resources don't propagate to any other resources associated with the cluster. For example, if you tag a cluster with this operation, that tag doesn't automatically propagate to the subnets and nodes associated with the cluster.
    ///
    /// Parameters:
    ///   - resourceArn: The Amazon Resource Name (ARN) of the resource to add tags to.
    ///   - tags: Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or Amazon Web Services resources.
    ///   - logger: Logger use during operation
    @inlinable
    public func tagResource(
        resourceArn: String,
        tags: [String: String],
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> TagResourceResponse {
        let input = TagResourceRequest(
            resourceArn: resourceArn, 
            tags: tags
        )
        return try await self.tagResource(input, logger: logger)
    }

    /// Deletes specified tags from an Amazon EKS resource.
    @Sendable
    @inlinable
    public func untagResource(_ input: UntagResourceRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UntagResourceResponse {
        try await self.client.execute(
            operation: "UntagResource", 
            path: "/tags/{resourceArn}", 
            httpMethod: .DELETE, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Deletes specified tags from an Amazon EKS resource.
    ///
    /// Parameters:
    ///   - resourceArn: The Amazon Resource Name (ARN) of the resource to delete tags from.
    ///   - tagKeys: The keys of the tags to remove.
    ///   - logger: Logger use during operation
    @inlinable
    public func untagResource(
        resourceArn: String,
        tagKeys: [String],
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UntagResourceResponse {
        let input = UntagResourceRequest(
            resourceArn: resourceArn, 
            tagKeys: tagKeys
        )
        return try await self.untagResource(input, logger: logger)
    }

    /// Updates an access entry.
    @Sendable
    @inlinable
    public func updateAccessEntry(_ input: UpdateAccessEntryRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateAccessEntryResponse {
        try await self.client.execute(
            operation: "UpdateAccessEntry", 
            path: "/clusters/{clusterName}/access-entries/{principalArn}", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates an access entry.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - kubernetesGroups: The value for name that you've specified for kind: Group as a subject in a Kubernetes RoleBinding or ClusterRoleBinding object. Amazon EKS doesn't confirm that the value for name exists in any bindings on your cluster. You can specify one or more names. Kubernetes authorizes the principalArn of the access entry to access any cluster objects that you've specified in a Kubernetes Role or ClusterRole object that is also specified in a binding's roleRef. For more information about creating Kubernetes RoleBinding, ClusterRoleBinding, Role, or ClusterRole objects, see Using RBAC Authorization in the Kubernetes documentation. If you want Amazon EKS to authorize the principalArn (instead of, or in addition to Kubernetes authorizing the principalArn), you can associate one or more access policies to the access entry using AssociateAccessPolicy. If you associate any access policies, the principalARN has all permissions assigned in the associated access policies and all permissions in any Kubernetes Role or ClusterRole objects that the group names are bound to.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry.
    ///   - username: The username to authenticate to Kubernetes with. We recommend not specifying a username and letting Amazon EKS specify it for you. For more information about the value Amazon EKS specifies for you, or constraints before specifying your own username, see Creating access entries in the Amazon EKS User Guide.
    ///   - logger: Logger use during operation
    @inlinable
    public func updateAccessEntry(
        clientRequestToken: String? = UpdateAccessEntryRequest.idempotencyToken(),
        clusterName: String,
        kubernetesGroups: [String]? = nil,
        principalArn: String,
        username: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateAccessEntryResponse {
        let input = UpdateAccessEntryRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            kubernetesGroups: kubernetesGroups, 
            principalArn: principalArn, 
            username: username
        )
        return try await self.updateAccessEntry(input, logger: logger)
    }

    /// Updates an Amazon EKS add-on.
    @Sendable
    @inlinable
    public func updateAddon(_ input: UpdateAddonRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateAddonResponse {
        try await self.client.execute(
            operation: "UpdateAddon", 
            path: "/clusters/{clusterName}/addons/{addonName}/update", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates an Amazon EKS add-on.
    ///
    /// Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - addonVersion: The version of the add-on. The version must match one of the versions returned by  DescribeAddonVersions .
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - configurationValues: The set of configuration values for the add-on that's created. The values that you provide are validated against the schema returned by DescribeAddonConfiguration.
    ///   - podIdentityAssociations: An array of EKS Pod Identity associations to be updated. Each association maps a Kubernetes service account to an IAM role. If this value is left blank, no change. If an empty array is provided, existing associations owned by the add-on are deleted. For more information, see Attach an IAM Role to an Amazon EKS add-on using EKS Pod Identity in the Amazon EKS User Guide.
    ///   - resolveConflicts: How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Conflicts are handled based on the option you choose:    None – Amazon EKS doesn't change the value. The update might fail.    Overwrite – Amazon EKS overwrites the changed value back to the Amazon EKS default value.    Preserve – Amazon EKS preserves the value. If you choose this option, we recommend that you test any field and value changes on a non-production cluster before updating the add-on on your production cluster.
    ///   - serviceAccountRoleArn: The Amazon Resource Name (ARN) of an existing IAM role to bind to the add-on's service account. The role must be assigned the IAM permissions required by the add-on. If you don't specify an existing IAM role, then the add-on uses the permissions assigned to the node IAM role. For more information, see Amazon EKS node IAM role in the Amazon EKS User Guide.  To specify an existing IAM role, you must have an IAM OpenID Connect (OIDC) provider created for your cluster. For more information, see Enabling IAM roles for service accounts on your cluster in the Amazon EKS User Guide.
    ///   - logger: Logger use during operation
    @inlinable
    public func updateAddon(
        addonName: String,
        addonVersion: String? = nil,
        clientRequestToken: String? = UpdateAddonRequest.idempotencyToken(),
        clusterName: String,
        configurationValues: String? = nil,
        podIdentityAssociations: [AddonPodIdentityAssociations]? = nil,
        resolveConflicts: ResolveConflicts? = nil,
        serviceAccountRoleArn: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateAddonResponse {
        let input = UpdateAddonRequest(
            addonName: addonName, 
            addonVersion: addonVersion, 
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            configurationValues: configurationValues, 
            podIdentityAssociations: podIdentityAssociations, 
            resolveConflicts: resolveConflicts, 
            serviceAccountRoleArn: serviceAccountRoleArn
        )
        return try await self.updateAddon(input, logger: logger)
    }

    /// Updates an Amazon EKS cluster configuration. Your cluster continues to function during the update. The response output includes an update ID that you can use to track the status of your cluster update with DescribeUpdate. You can use this operation to do the following actions:   You can use this API operation to enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs. By default, cluster control plane logs aren't exported to CloudWatch Logs. For more information, see Amazon EKS Cluster control plane logs in the  Amazon EKS User Guide .  CloudWatch Logs ingestion, archive storage, and data scanning rates apply to exported control plane logs. For more information, see CloudWatch Pricing.    You can also use this API operation to enable or disable public and private access to your cluster's Kubernetes API server endpoint. By default, public access is enabled, and private access is disabled. For more information, see  Cluster API server endpoint in the  Amazon EKS User Guide .   You can also use this API operation to choose different subnets and security groups for the cluster. You must specify at least two subnets that are in different Availability Zones. You can't change which VPC the subnets are from, the subnets must be in the same VPC as the subnets that the cluster was created with. For more information about the VPC requirements, see https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html in the  Amazon EKS User Guide .   You can also use this API operation to enable or disable ARC zonal shift. If zonal shift is enabled, Amazon Web Services configures zonal autoshift for the cluster.   You can also use this API operation to add, change, or remove the configuration in the cluster for EKS Hybrid Nodes. To remove the configuration, use the remoteNetworkConfig key with an object containing both subkeys with empty arrays for each. Here is an inline example: "remoteNetworkConfig": { "remoteNodeNetworks": [], "remotePodNetworks": [] }.   Cluster updates are asynchronous, and they should finish within a few minutes. During an update, the cluster status moves to UPDATING (this status transition is eventually consistent). When the update is complete (either Failed or Successful), the cluster status moves to Active.
    @Sendable
    @inlinable
    public func updateClusterConfig(_ input: UpdateClusterConfigRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateClusterConfigResponse {
        try await self.client.execute(
            operation: "UpdateClusterConfig", 
            path: "/clusters/{name}/update-config", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates an Amazon EKS cluster configuration. Your cluster continues to function during the update. The response output includes an update ID that you can use to track the status of your cluster update with DescribeUpdate. You can use this operation to do the following actions:   You can use this API operation to enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs. By default, cluster control plane logs aren't exported to CloudWatch Logs. For more information, see Amazon EKS Cluster control plane logs in the  Amazon EKS User Guide .  CloudWatch Logs ingestion, archive storage, and data scanning rates apply to exported control plane logs. For more information, see CloudWatch Pricing.    You can also use this API operation to enable or disable public and private access to your cluster's Kubernetes API server endpoint. By default, public access is enabled, and private access is disabled. For more information, see  Cluster API server endpoint in the  Amazon EKS User Guide .   You can also use this API operation to choose different subnets and security groups for the cluster. You must specify at least two subnets that are in different Availability Zones. You can't change which VPC the subnets are from, the subnets must be in the same VPC as the subnets that the cluster was created with. For more information about the VPC requirements, see https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html in the  Amazon EKS User Guide .   You can also use this API operation to enable or disable ARC zonal shift. If zonal shift is enabled, Amazon Web Services configures zonal autoshift for the cluster.   You can also use this API operation to add, change, or remove the configuration in the cluster for EKS Hybrid Nodes. To remove the configuration, use the remoteNetworkConfig key with an object containing both subkeys with empty arrays for each. Here is an inline example: "remoteNetworkConfig": { "remoteNodeNetworks": [], "remotePodNetworks": [] }.   Cluster updates are asynchronous, and they should finish within a few minutes. During an update, the cluster status moves to UPDATING (this status transition is eventually consistent). When the update is complete (either Failed or Successful), the cluster status moves to Active.
    ///
    /// Parameters:
    ///   - accessConfig: The access configuration for the cluster.
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - computeConfig: Update the configuration of the compute capability of your EKS Auto Mode cluster. For example, enable the capability.
    ///   - deletionProtection: Specifies whether to enable or disable deletion protection for the cluster. When  enabled (true), the cluster cannot be deleted until deletion protection is  explicitly disabled. When disabled (false), the cluster can be deleted  normally.
    ///   - kubernetesNetworkConfig: 
    ///   - logging: Enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs . By default, cluster control plane logs aren't exported to CloudWatch Logs . For more information, see Amazon EKS cluster control plane logs in the  Amazon EKS User Guide .  CloudWatch Logs ingestion, archive storage, and data scanning rates apply to exported control plane logs. For more information, see CloudWatch Pricing.
    ///   - name: The name of the Amazon EKS cluster to update.
    ///   - remoteNetworkConfig: 
    ///   - resourcesVpcConfig: 
    ///   - storageConfig: Update the configuration of the block storage capability of your EKS Auto Mode cluster. For example, enable the capability.
    ///   - upgradePolicy: You can enable or disable extended support for clusters currently on standard support. You cannot disable extended support once it starts. You must enable extended support before your cluster exits standard support.
    ///   - zonalShiftConfig: Enable or disable ARC zonal shift for the cluster. If zonal shift is enabled, Amazon Web Services configures zonal autoshift for the cluster. Zonal shift is a feature of Amazon Application Recovery Controller (ARC). ARC zonal shift is designed to be a temporary measure that allows you to move traffic for a resource away from an impaired AZ until the zonal shift expires or you cancel it. You can extend the zonal shift if necessary. You can start a zonal shift for an EKS cluster, or you can allow Amazon Web Services to do it for you by enabling zonal autoshift. This shift updates the flow of east-to-west network traffic in your cluster to only consider network endpoints for Pods running on worker nodes in healthy AZs. Additionally, any ALB or NLB handling ingress traffic for applications in your EKS cluster will automatically route traffic to targets in the healthy AZs. For more information about zonal shift in EKS, see Learn about Amazon Application Recovery Controller (ARC) Zonal Shift in Amazon EKS in the  Amazon EKS User Guide .
    ///   - logger: Logger use during operation
    @inlinable
    public func updateClusterConfig(
        accessConfig: UpdateAccessConfigRequest? = nil,
        clientRequestToken: String? = UpdateClusterConfigRequest.idempotencyToken(),
        computeConfig: ComputeConfigRequest? = nil,
        deletionProtection: Bool? = nil,
        kubernetesNetworkConfig: KubernetesNetworkConfigRequest? = nil,
        logging: Logging? = nil,
        name: String,
        remoteNetworkConfig: RemoteNetworkConfigRequest? = nil,
        resourcesVpcConfig: VpcConfigRequest? = nil,
        storageConfig: StorageConfigRequest? = nil,
        upgradePolicy: UpgradePolicyRequest? = nil,
        zonalShiftConfig: ZonalShiftConfigRequest? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateClusterConfigResponse {
        let input = UpdateClusterConfigRequest(
            accessConfig: accessConfig, 
            clientRequestToken: clientRequestToken, 
            computeConfig: computeConfig, 
            deletionProtection: deletionProtection, 
            kubernetesNetworkConfig: kubernetesNetworkConfig, 
            logging: logging, 
            name: name, 
            remoteNetworkConfig: remoteNetworkConfig, 
            resourcesVpcConfig: resourcesVpcConfig, 
            storageConfig: storageConfig, 
            upgradePolicy: upgradePolicy, 
            zonalShiftConfig: zonalShiftConfig
        )
        return try await self.updateClusterConfig(input, logger: logger)
    }

    /// Updates an Amazon EKS cluster to the specified Kubernetes version. Your cluster continues to function during the update. The response output includes an update ID that you can use to track the status of your cluster update with the  DescribeUpdate API operation. Cluster updates are asynchronous, and they should finish within a few minutes. During an update, the cluster status moves to UPDATING (this status transition is eventually consistent). When the update is complete (either Failed or Successful), the cluster status moves to Active. If your cluster has managed node groups attached to it, all of your node groups' Kubernetes versions must match the cluster's Kubernetes version in order to update the cluster to a new Kubernetes version.
    @Sendable
    @inlinable
    public func updateClusterVersion(_ input: UpdateClusterVersionRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateClusterVersionResponse {
        try await self.client.execute(
            operation: "UpdateClusterVersion", 
            path: "/clusters/{name}/updates", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates an Amazon EKS cluster to the specified Kubernetes version. Your cluster continues to function during the update. The response output includes an update ID that you can use to track the status of your cluster update with the  DescribeUpdate API operation. Cluster updates are asynchronous, and they should finish within a few minutes. During an update, the cluster status moves to UPDATING (this status transition is eventually consistent). When the update is complete (either Failed or Successful), the cluster status moves to Active. If your cluster has managed node groups attached to it, all of your node groups' Kubernetes versions must match the cluster's Kubernetes version in order to update the cluster to a new Kubernetes version.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - force: Set this value to true to override upgrade-blocking readiness checks when updating a cluster.
    ///   - name: The name of the Amazon EKS cluster to update.
    ///   - version: The desired Kubernetes version following a successful update.
    ///   - logger: Logger use during operation
    @inlinable
    public func updateClusterVersion(
        clientRequestToken: String? = UpdateClusterVersionRequest.idempotencyToken(),
        force: Bool? = nil,
        name: String,
        version: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateClusterVersionResponse {
        let input = UpdateClusterVersionRequest(
            clientRequestToken: clientRequestToken, 
            force: force, 
            name: name, 
            version: version
        )
        return try await self.updateClusterVersion(input, logger: logger)
    }

    /// Update an EKS Anywhere Subscription. Only auto renewal and tags can be updated after subscription creation.
    @Sendable
    @inlinable
    public func updateEksAnywhereSubscription(_ input: UpdateEksAnywhereSubscriptionRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateEksAnywhereSubscriptionResponse {
        try await self.client.execute(
            operation: "UpdateEksAnywhereSubscription", 
            path: "/eks-anywhere-subscriptions/{id}", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Update an EKS Anywhere Subscription. Only auto renewal and tags can be updated after subscription creation.
    ///
    /// Parameters:
    ///   - autoRenew: A boolean indicating whether or not to automatically renew the subscription.
    ///   - clientRequestToken: Unique, case-sensitive identifier to ensure the idempotency of the request.
    ///   - id: The ID of the subscription.
    ///   - logger: Logger use during operation
    @inlinable
    public func updateEksAnywhereSubscription(
        autoRenew: Bool = false,
        clientRequestToken: String? = UpdateEksAnywhereSubscriptionRequest.idempotencyToken(),
        id: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateEksAnywhereSubscriptionResponse {
        let input = UpdateEksAnywhereSubscriptionRequest(
            autoRenew: autoRenew, 
            clientRequestToken: clientRequestToken, 
            id: id
        )
        return try await self.updateEksAnywhereSubscription(input, logger: logger)
    }

    /// Updates an Amazon EKS managed node group configuration. Your node group continues to function during the update. The response output includes an update ID that you can use to track the status of your node group update with the  DescribeUpdate API operation. You can update the Kubernetes labels and taints for a node group and the scaling and version update configuration.
    @Sendable
    @inlinable
    public func updateNodegroupConfig(_ input: UpdateNodegroupConfigRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateNodegroupConfigResponse {
        try await self.client.execute(
            operation: "UpdateNodegroupConfig", 
            path: "/clusters/{clusterName}/node-groups/{nodegroupName}/update-config", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates an Amazon EKS managed node group configuration. Your node group continues to function during the update. The response output includes an update ID that you can use to track the status of your node group update with the  DescribeUpdate API operation. You can update the Kubernetes labels and taints for a node group and the scaling and version update configuration.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - labels: The Kubernetes labels to apply to the nodes in the node group after the update.
    ///   - nodegroupName: The name of the managed node group to update.
    ///   - nodeRepairConfig: The node auto repair configuration for the node group.
    ///   - scalingConfig: The scaling configuration details for the Auto Scaling group after the update.
    ///   - taints: The Kubernetes taints to be applied to the nodes in the node group after the update. For more information, see Node taints on managed node groups.
    ///   - updateConfig: The node group update configuration.
    ///   - logger: Logger use during operation
    @inlinable
    public func updateNodegroupConfig(
        clientRequestToken: String? = UpdateNodegroupConfigRequest.idempotencyToken(),
        clusterName: String,
        labels: UpdateLabelsPayload? = nil,
        nodegroupName: String,
        nodeRepairConfig: NodeRepairConfig? = nil,
        scalingConfig: NodegroupScalingConfig? = nil,
        taints: UpdateTaintsPayload? = nil,
        updateConfig: NodegroupUpdateConfig? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateNodegroupConfigResponse {
        let input = UpdateNodegroupConfigRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            labels: labels, 
            nodegroupName: nodegroupName, 
            nodeRepairConfig: nodeRepairConfig, 
            scalingConfig: scalingConfig, 
            taints: taints, 
            updateConfig: updateConfig
        )
        return try await self.updateNodegroupConfig(input, logger: logger)
    }

    /// Updates the Kubernetes version or AMI version of an Amazon EKS managed node group. You can update a node group using a launch template only if the node group was originally deployed with a launch template. Additionally, the launch template ID or name must match what was used when the node group was created. You can update the launch template version with necessary changes. If you need to update a custom AMI in a node group that was deployed with a launch template, then update your custom AMI, specify the new ID in a new version of the launch template, and then update the node group to the new version of the launch template. If you update without a launch template, then you can update to the latest available AMI version of a node group's current Kubernetes version by not specifying a Kubernetes version in the request. You can update to the latest AMI version of your cluster's current Kubernetes version by specifying your cluster's Kubernetes version in the request. For information about Linux versions, see Amazon EKS optimized Amazon Linux AMI versions in the Amazon EKS User Guide. For information about Windows versions, see Amazon EKS optimized Windows AMI versions in the Amazon EKS User Guide.  You cannot roll back a node group to an earlier Kubernetes version or AMI version. When a node in a managed node group is terminated due to a scaling action or update, every Pod on that node is drained first. Amazon EKS attempts to drain the nodes gracefully and will fail if it is unable to do so. You can force the update if Amazon EKS is unable to drain the nodes as a result of a Pod disruption budget issue.
    @Sendable
    @inlinable
    public func updateNodegroupVersion(_ input: UpdateNodegroupVersionRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdateNodegroupVersionResponse {
        try await self.client.execute(
            operation: "UpdateNodegroupVersion", 
            path: "/clusters/{clusterName}/node-groups/{nodegroupName}/update-version", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates the Kubernetes version or AMI version of an Amazon EKS managed node group. You can update a node group using a launch template only if the node group was originally deployed with a launch template. Additionally, the launch template ID or name must match what was used when the node group was created. You can update the launch template version with necessary changes. If you need to update a custom AMI in a node group that was deployed with a launch template, then update your custom AMI, specify the new ID in a new version of the launch template, and then update the node group to the new version of the launch template. If you update without a launch template, then you can update to the latest available AMI version of a node group's current Kubernetes version by not specifying a Kubernetes version in the request. You can update to the latest AMI version of your cluster's current Kubernetes version by specifying your cluster's Kubernetes version in the request. For information about Linux versions, see Amazon EKS optimized Amazon Linux AMI versions in the Amazon EKS User Guide. For information about Windows versions, see Amazon EKS optimized Windows AMI versions in the Amazon EKS User Guide.  You cannot roll back a node group to an earlier Kubernetes version or AMI version. When a node in a managed node group is terminated due to a scaling action or update, every Pod on that node is drained first. Amazon EKS attempts to drain the nodes gracefully and will fail if it is unable to do so. You can force the update if Amazon EKS is unable to drain the nodes as a result of a Pod disruption budget issue.
    ///
    /// Parameters:
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of your cluster.
    ///   - force: Force the update if any Pod on the existing node group can't be drained due to a Pod disruption budget issue. If an update fails because all Pods can't be drained, you can force the update after it fails to terminate the old node whether or not any Pod is running on the node.
    ///   - launchTemplate: An object representing a node group's launch template specification. You can only update a node group using a launch template if the node group was originally deployed with a launch template. When updating, you must specify the same launch template ID or name that was used to create the node group.
    ///   - nodegroupName: The name of the managed node group to update.
    ///   - releaseVersion: The AMI version of the Amazon EKS optimized AMI to use for the update. By default, the latest available AMI version for the node group's Kubernetes version is used. For information about Linux versions, see Amazon EKS optimized Amazon Linux AMI versions in the Amazon EKS User Guide. Amazon EKS managed node groups support the November 2022 and later releases of the Windows AMIs. For information about Windows versions, see Amazon EKS optimized Windows AMI versions in the Amazon EKS User Guide. If you specify launchTemplate, and your launch template uses a custom AMI, then don't specify  releaseVersion, or the node group  update will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - version: The Kubernetes version to update to. If no version is specified, then the Kubernetes version of the node group does not change. You can specify the Kubernetes version of the cluster to update the node group to the latest AMI version of the cluster's Kubernetes version. If you specify launchTemplate, and your launch template uses a custom AMI, then don't specify  version, or the node group  update will fail. For more information about using launch templates with Amazon EKS, see Customizing managed nodes with launch templates in the Amazon EKS User Guide.
    ///   - logger: Logger use during operation
    @inlinable
    public func updateNodegroupVersion(
        clientRequestToken: String? = UpdateNodegroupVersionRequest.idempotencyToken(),
        clusterName: String,
        force: Bool? = nil,
        launchTemplate: LaunchTemplateSpecification? = nil,
        nodegroupName: String,
        releaseVersion: String? = nil,
        version: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdateNodegroupVersionResponse {
        let input = UpdateNodegroupVersionRequest(
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            force: force, 
            launchTemplate: launchTemplate, 
            nodegroupName: nodegroupName, 
            releaseVersion: releaseVersion, 
            version: version
        )
        return try await self.updateNodegroupVersion(input, logger: logger)
    }

    /// Updates a EKS Pod Identity association. In an update, you can change the IAM role, the target IAM role, or disableSessionTags. You must change at least one of these in an update. An association can't be moved between clusters, namespaces, or service accounts. If you need to edit the namespace or service account, you need to delete the association and then create a new association with your desired settings. Similar to Amazon Web Services IAM behavior, EKS Pod Identity associations are eventually consistent, and may take several seconds to be effective after the initial API call returns successfully. You must design your applications to account for these potential delays. We recommend that you don’t include association create/updates in the critical, high-availability code paths of your application. Instead, make changes in a separate initialization or setup routine that you run less frequently. You can set a target IAM role in the same or a different account for advanced scenarios. With a target role, EKS Pod Identity automatically performs two role assumptions in sequence: first assuming the role in the association that is in this account, then using those credentials to assume the target IAM role. This process provides your Pod with temporary credentials that have the permissions defined in the target role, allowing secure access to resources in another Amazon Web Services account.
    @Sendable
    @inlinable
    public func updatePodIdentityAssociation(_ input: UpdatePodIdentityAssociationRequest, logger: Logger = AWSClient.loggingDisabled) async throws -> UpdatePodIdentityAssociationResponse {
        try await self.client.execute(
            operation: "UpdatePodIdentityAssociation", 
            path: "/clusters/{clusterName}/pod-identity-associations/{associationId}", 
            httpMethod: .POST, 
            serviceConfig: self.config, 
            input: input, 
            logger: logger
        )
    }
    /// Updates a EKS Pod Identity association. In an update, you can change the IAM role, the target IAM role, or disableSessionTags. You must change at least one of these in an update. An association can't be moved between clusters, namespaces, or service accounts. If you need to edit the namespace or service account, you need to delete the association and then create a new association with your desired settings. Similar to Amazon Web Services IAM behavior, EKS Pod Identity associations are eventually consistent, and may take several seconds to be effective after the initial API call returns successfully. You must design your applications to account for these potential delays. We recommend that you don’t include association create/updates in the critical, high-availability code paths of your application. Instead, make changes in a separate initialization or setup routine that you run less frequently. You can set a target IAM role in the same or a different account for advanced scenarios. With a target role, EKS Pod Identity automatically performs two role assumptions in sequence: first assuming the role in the association that is in this account, then using those credentials to assume the target IAM role. This process provides your Pod with temporary credentials that have the permissions defined in the target role, allowing secure access to resources in another Amazon Web Services account.
    ///
    /// Parameters:
    ///   - associationId: The ID of the association to be updated.
    ///   - clientRequestToken: A unique, case-sensitive identifier that you provide to ensure
    ///   - clusterName: The name of the cluster that you want to update the association in.
    ///   - disableSessionTags: Disable the automatic sessions tags that are appended by EKS Pod Identity. EKS Pod Identity adds a pre-defined set of session tags when it assumes the role. You can use these tags to author a single role that can work across resources by allowing access to Amazon Web Services resources based on matching tags. By default, EKS Pod Identity attaches six tags, including tags for cluster name, namespace, and service account name. For the list of tags added by EKS Pod Identity, see List of session tags added by EKS Pod Identity in the Amazon EKS User Guide. Amazon Web Services compresses inline session policies, managed policy ARNs, and session tags into a packed binary format that has a separate limit. If you receive a PackedPolicyTooLarge error indicating the packed binary format has exceeded the size limit, you can attempt to reduce the size by disabling the session tags added by EKS Pod Identity.
    ///   - roleArn: The new IAM role to change in the association.
    ///   - targetRoleArn: The Amazon Resource Name (ARN) of the target IAM role to associate with the service account. This role is assumed by using the EKS Pod Identity association role, then the credentials for this role are injected into the Pod. When you run applications on Amazon EKS, your application might need to access Amazon Web Services resources from a different role that exists in the same or different Amazon Web Services account. For example, your application running in “Account A” might need to access resources, such as buckets in “Account B” or within “Account A” itself. You can create a association to access Amazon Web Services resources in “Account B” by creating two IAM roles: a role in “Account A” and a role in “Account B” (which can be the same or different account), each with the necessary trust and permission policies. After you provide these roles in the IAM role and Target IAM role fields, EKS will perform role chaining to ensure your application gets the required permissions. This means Role A will assume Role B, allowing your Pods to securely access resources like S3 buckets in the target account.
    ///   - logger: Logger use during operation
    @inlinable
    public func updatePodIdentityAssociation(
        associationId: String,
        clientRequestToken: String? = UpdatePodIdentityAssociationRequest.idempotencyToken(),
        clusterName: String,
        disableSessionTags: Bool? = nil,
        roleArn: String? = nil,
        targetRoleArn: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws -> UpdatePodIdentityAssociationResponse {
        let input = UpdatePodIdentityAssociationRequest(
            associationId: associationId, 
            clientRequestToken: clientRequestToken, 
            clusterName: clusterName, 
            disableSessionTags: disableSessionTags, 
            roleArn: roleArn, 
            targetRoleArn: targetRoleArn
        )
        return try await self.updatePodIdentityAssociation(input, logger: logger)
    }
}

extension EKS {
    /// Initializer required by `AWSService.with(middlewares:timeout:byteBufferAllocator:options)`. You are not able to use this initializer directly as there are not public
    /// initializers for `AWSServiceConfig.Patch`. Please use `AWSService.with(middlewares:timeout:byteBufferAllocator:options)` instead.
    public init(from: EKS, patch: AWSServiceConfig.Patch) {
        self.client = from.client
        self.config = from.config.with(patch: patch)
    }
}

// MARK: Paginators

@available(macOS 10.15, iOS 13.0, tvOS 13.0, watchOS 6.0, *)
extension EKS {
    /// Return PaginatorSequence for operation ``describeAddonVersions(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func describeAddonVersionsPaginator(
        _ input: DescribeAddonVersionsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<DescribeAddonVersionsRequest, DescribeAddonVersionsResponse> {
        return .init(
            input: input,
            command: self.describeAddonVersions,
            inputKey: \DescribeAddonVersionsRequest.nextToken,
            outputKey: \DescribeAddonVersionsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``describeAddonVersions(_:logger:)``.
    ///
    /// - Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - kubernetesVersion: The Kubernetes versions that you can use the add-on with.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - owners: The owner of the add-on. For valid owners, don't specify a value for this property.
    ///   - publishers: The publisher of the add-on. For valid publishers, don't specify a value for this property.
    ///   - types: The type of the add-on. For valid types, don't specify a value for this property.
    ///   - logger: Logger used for logging
    @inlinable
    public func describeAddonVersionsPaginator(
        addonName: String? = nil,
        kubernetesVersion: String? = nil,
        maxResults: Int? = nil,
        owners: [String]? = nil,
        publishers: [String]? = nil,
        types: [String]? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<DescribeAddonVersionsRequest, DescribeAddonVersionsResponse> {
        let input = DescribeAddonVersionsRequest(
            addonName: addonName, 
            kubernetesVersion: kubernetesVersion, 
            maxResults: maxResults, 
            owners: owners, 
            publishers: publishers, 
            types: types
        )
        return self.describeAddonVersionsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``describeClusterVersions(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func describeClusterVersionsPaginator(
        _ input: DescribeClusterVersionsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<DescribeClusterVersionsRequest, DescribeClusterVersionsResponse> {
        return .init(
            input: input,
            command: self.describeClusterVersions,
            inputKey: \DescribeClusterVersionsRequest.nextToken,
            outputKey: \DescribeClusterVersionsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``describeClusterVersions(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterType: The type of cluster to filter versions by.
    ///   - clusterVersions: List of specific cluster versions to describe.
    ///   - defaultOnly: Filter to show only default versions.
    ///   - includeAll: Include all available versions in the response.
    ///   - maxResults: Maximum number of results to return.
    ///   - versionStatus: Filter versions by their current status.
    ///   - logger: Logger used for logging
    @inlinable
    public func describeClusterVersionsPaginator(
        clusterType: String? = nil,
        clusterVersions: [String]? = nil,
        defaultOnly: Bool? = nil,
        includeAll: Bool? = nil,
        maxResults: Int? = nil,
        versionStatus: VersionStatus? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<DescribeClusterVersionsRequest, DescribeClusterVersionsResponse> {
        let input = DescribeClusterVersionsRequest(
            clusterType: clusterType, 
            clusterVersions: clusterVersions, 
            defaultOnly: defaultOnly, 
            includeAll: includeAll, 
            maxResults: maxResults, 
            versionStatus: versionStatus
        )
        return self.describeClusterVersionsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listAccessEntries(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listAccessEntriesPaginator(
        _ input: ListAccessEntriesRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListAccessEntriesRequest, ListAccessEntriesResponse> {
        return .init(
            input: input,
            command: self.listAccessEntries,
            inputKey: \ListAccessEntriesRequest.nextToken,
            outputKey: \ListAccessEntriesResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listAccessEntries(_:logger:)``.
    ///
    /// - Parameters:
    ///   - associatedPolicyArn: The ARN of an AccessPolicy. When you specify an access policy ARN, only the access entries associated to that access policy are returned. For a list of available policy ARNs, use ListAccessPolicies.
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listAccessEntriesPaginator(
        associatedPolicyArn: String? = nil,
        clusterName: String,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListAccessEntriesRequest, ListAccessEntriesResponse> {
        let input = ListAccessEntriesRequest(
            associatedPolicyArn: associatedPolicyArn, 
            clusterName: clusterName, 
            maxResults: maxResults
        )
        return self.listAccessEntriesPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listAccessPolicies(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listAccessPoliciesPaginator(
        _ input: ListAccessPoliciesRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListAccessPoliciesRequest, ListAccessPoliciesResponse> {
        return .init(
            input: input,
            command: self.listAccessPolicies,
            inputKey: \ListAccessPoliciesRequest.nextToken,
            outputKey: \ListAccessPoliciesResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listAccessPolicies(_:logger:)``.
    ///
    /// - Parameters:
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listAccessPoliciesPaginator(
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListAccessPoliciesRequest, ListAccessPoliciesResponse> {
        let input = ListAccessPoliciesRequest(
            maxResults: maxResults
        )
        return self.listAccessPoliciesPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listAddons(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listAddonsPaginator(
        _ input: ListAddonsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListAddonsRequest, ListAddonsResponse> {
        return .init(
            input: input,
            command: self.listAddons,
            inputKey: \ListAddonsRequest.nextToken,
            outputKey: \ListAddonsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listAddons(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listAddonsPaginator(
        clusterName: String,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListAddonsRequest, ListAddonsResponse> {
        let input = ListAddonsRequest(
            clusterName: clusterName, 
            maxResults: maxResults
        )
        return self.listAddonsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listAssociatedAccessPolicies(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listAssociatedAccessPoliciesPaginator(
        _ input: ListAssociatedAccessPoliciesRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListAssociatedAccessPoliciesRequest, ListAssociatedAccessPoliciesResponse> {
        return .init(
            input: input,
            command: self.listAssociatedAccessPolicies,
            inputKey: \ListAssociatedAccessPoliciesRequest.nextToken,
            outputKey: \ListAssociatedAccessPoliciesResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listAssociatedAccessPolicies(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - principalArn: The ARN of the IAM principal for the AccessEntry.
    ///   - logger: Logger used for logging
    @inlinable
    public func listAssociatedAccessPoliciesPaginator(
        clusterName: String,
        maxResults: Int? = nil,
        principalArn: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListAssociatedAccessPoliciesRequest, ListAssociatedAccessPoliciesResponse> {
        let input = ListAssociatedAccessPoliciesRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            principalArn: principalArn
        )
        return self.listAssociatedAccessPoliciesPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listClusters(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listClustersPaginator(
        _ input: ListClustersRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListClustersRequest, ListClustersResponse> {
        return .init(
            input: input,
            command: self.listClusters,
            inputKey: \ListClustersRequest.nextToken,
            outputKey: \ListClustersResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listClusters(_:logger:)``.
    ///
    /// - Parameters:
    ///   - include: Indicates whether external clusters are included in the returned list. Use 'all' to return https://docs.aws.amazon.com/eks/latest/userguide/eks-connector.htmlconnected clusters, or blank to return only Amazon EKS clusters. 'all' must be in lowercase otherwise an error occurs.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listClustersPaginator(
        include: [String]? = nil,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListClustersRequest, ListClustersResponse> {
        let input = ListClustersRequest(
            include: include, 
            maxResults: maxResults
        )
        return self.listClustersPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listEksAnywhereSubscriptions(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listEksAnywhereSubscriptionsPaginator(
        _ input: ListEksAnywhereSubscriptionsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListEksAnywhereSubscriptionsRequest, ListEksAnywhereSubscriptionsResponse> {
        return .init(
            input: input,
            command: self.listEksAnywhereSubscriptions,
            inputKey: \ListEksAnywhereSubscriptionsRequest.nextToken,
            outputKey: \ListEksAnywhereSubscriptionsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listEksAnywhereSubscriptions(_:logger:)``.
    ///
    /// - Parameters:
    ///   - includeStatus: An array of subscription statuses to filter on.
    ///   - maxResults: The maximum number of cluster results returned by ListEksAnywhereSubscriptions in paginated output. When you use this parameter, ListEksAnywhereSubscriptions returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListEksAnywhereSubscriptions request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListEksAnywhereSubscriptions returns up to 10 results and a nextToken value if applicable.
    ///   - logger: Logger used for logging
    @inlinable
    public func listEksAnywhereSubscriptionsPaginator(
        includeStatus: [EksAnywhereSubscriptionStatus]? = nil,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListEksAnywhereSubscriptionsRequest, ListEksAnywhereSubscriptionsResponse> {
        let input = ListEksAnywhereSubscriptionsRequest(
            includeStatus: includeStatus, 
            maxResults: maxResults
        )
        return self.listEksAnywhereSubscriptionsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listFargateProfiles(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listFargateProfilesPaginator(
        _ input: ListFargateProfilesRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListFargateProfilesRequest, ListFargateProfilesResponse> {
        return .init(
            input: input,
            command: self.listFargateProfiles,
            inputKey: \ListFargateProfilesRequest.nextToken,
            outputKey: \ListFargateProfilesResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listFargateProfiles(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listFargateProfilesPaginator(
        clusterName: String,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListFargateProfilesRequest, ListFargateProfilesResponse> {
        let input = ListFargateProfilesRequest(
            clusterName: clusterName, 
            maxResults: maxResults
        )
        return self.listFargateProfilesPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listIdentityProviderConfigs(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listIdentityProviderConfigsPaginator(
        _ input: ListIdentityProviderConfigsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListIdentityProviderConfigsRequest, ListIdentityProviderConfigsResponse> {
        return .init(
            input: input,
            command: self.listIdentityProviderConfigs,
            inputKey: \ListIdentityProviderConfigsRequest.nextToken,
            outputKey: \ListIdentityProviderConfigsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listIdentityProviderConfigs(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listIdentityProviderConfigsPaginator(
        clusterName: String,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListIdentityProviderConfigsRequest, ListIdentityProviderConfigsResponse> {
        let input = ListIdentityProviderConfigsRequest(
            clusterName: clusterName, 
            maxResults: maxResults
        )
        return self.listIdentityProviderConfigsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listInsights(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listInsightsPaginator(
        _ input: ListInsightsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListInsightsRequest, ListInsightsResponse> {
        return .init(
            input: input,
            command: self.listInsights,
            inputKey: \ListInsightsRequest.nextToken,
            outputKey: \ListInsightsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listInsights(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of the Amazon EKS cluster associated with the insights.
    ///   - filter: The criteria to filter your list of insights for your cluster. You can filter which insights are returned by category, associated Kubernetes version, and status.
    ///   - maxResults: The maximum number of identity provider configurations returned by ListInsights in paginated output. When you use this parameter, ListInsights returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListInsights request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListInsights returns up to 100 results and a nextToken value, if applicable.
    ///   - logger: Logger used for logging
    @inlinable
    public func listInsightsPaginator(
        clusterName: String,
        filter: InsightsFilter? = nil,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListInsightsRequest, ListInsightsResponse> {
        let input = ListInsightsRequest(
            clusterName: clusterName, 
            filter: filter, 
            maxResults: maxResults
        )
        return self.listInsightsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listNodegroups(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listNodegroupsPaginator(
        _ input: ListNodegroupsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListNodegroupsRequest, ListNodegroupsResponse> {
        return .init(
            input: input,
            command: self.listNodegroups,
            inputKey: \ListNodegroupsRequest.nextToken,
            outputKey: \ListNodegroupsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listNodegroups(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - logger: Logger used for logging
    @inlinable
    public func listNodegroupsPaginator(
        clusterName: String,
        maxResults: Int? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListNodegroupsRequest, ListNodegroupsResponse> {
        let input = ListNodegroupsRequest(
            clusterName: clusterName, 
            maxResults: maxResults
        )
        return self.listNodegroupsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listPodIdentityAssociations(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listPodIdentityAssociationsPaginator(
        _ input: ListPodIdentityAssociationsRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListPodIdentityAssociationsRequest, ListPodIdentityAssociationsResponse> {
        return .init(
            input: input,
            command: self.listPodIdentityAssociations,
            inputKey: \ListPodIdentityAssociationsRequest.nextToken,
            outputKey: \ListPodIdentityAssociationsResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listPodIdentityAssociations(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of the cluster that the associations are in.
    ///   - maxResults: The maximum number of EKS Pod Identity association results returned by ListPodIdentityAssociations in paginated output. When you use this parameter, ListPodIdentityAssociations returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListPodIdentityAssociations request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListPodIdentityAssociations returns up to 100 results and a nextToken value if applicable.
    ///   - namespace: The name of the Kubernetes namespace inside the cluster that the associations are in.
    ///   - serviceAccount: The name of the Kubernetes service account that the associations use.
    ///   - logger: Logger used for logging
    @inlinable
    public func listPodIdentityAssociationsPaginator(
        clusterName: String,
        maxResults: Int? = nil,
        namespace: String? = nil,
        serviceAccount: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListPodIdentityAssociationsRequest, ListPodIdentityAssociationsResponse> {
        let input = ListPodIdentityAssociationsRequest(
            clusterName: clusterName, 
            maxResults: maxResults, 
            namespace: namespace, 
            serviceAccount: serviceAccount
        )
        return self.listPodIdentityAssociationsPaginator(input, logger: logger)
    }

    /// Return PaginatorSequence for operation ``listUpdates(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func listUpdatesPaginator(
        _ input: ListUpdatesRequest,
        logger: Logger = AWSClient.loggingDisabled
    ) -> AWSClient.PaginatorSequence<ListUpdatesRequest, ListUpdatesResponse> {
        return .init(
            input: input,
            command: self.listUpdates,
            inputKey: \ListUpdatesRequest.nextToken,
            outputKey: \ListUpdatesResponse.nextToken,
            logger: logger
        )
    }
    /// Return PaginatorSequence for operation ``listUpdates(_:logger:)``.
    ///
    /// - Parameters:
    ///   - addonName: The names of the installed add-ons that have available updates.
    ///   - maxResults: The maximum number of results, returned in paginated output. You receive maxResults in a single page, along with a nextToken response element. You can see the remaining results of the initial request by sending another request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, 100 results and a nextToken value, if applicable, are returned.
    ///   - name: The name of the Amazon EKS cluster to list updates for.
    ///   - nodegroupName: The name of the Amazon EKS managed node group to list updates for.
    ///   - logger: Logger used for logging
    @inlinable
    public func listUpdatesPaginator(
        addonName: String? = nil,
        maxResults: Int? = nil,
        name: String,
        nodegroupName: String? = nil,
        logger: Logger = AWSClient.loggingDisabled        
    ) -> AWSClient.PaginatorSequence<ListUpdatesRequest, ListUpdatesResponse> {
        let input = ListUpdatesRequest(
            addonName: addonName, 
            maxResults: maxResults, 
            name: name, 
            nodegroupName: nodegroupName
        )
        return self.listUpdatesPaginator(input, logger: logger)
    }
}

extension EKS.DescribeAddonVersionsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.DescribeAddonVersionsRequest {
        return .init(
            addonName: self.addonName,
            kubernetesVersion: self.kubernetesVersion,
            maxResults: self.maxResults,
            nextToken: token,
            owners: self.owners,
            publishers: self.publishers,
            types: self.types
        )
    }
}

extension EKS.DescribeClusterVersionsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.DescribeClusterVersionsRequest {
        return .init(
            clusterType: self.clusterType,
            clusterVersions: self.clusterVersions,
            defaultOnly: self.defaultOnly,
            includeAll: self.includeAll,
            maxResults: self.maxResults,
            nextToken: token,
            versionStatus: self.versionStatus
        )
    }
}

extension EKS.ListAccessEntriesRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListAccessEntriesRequest {
        return .init(
            associatedPolicyArn: self.associatedPolicyArn,
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListAccessPoliciesRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListAccessPoliciesRequest {
        return .init(
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListAddonsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListAddonsRequest {
        return .init(
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListAssociatedAccessPoliciesRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListAssociatedAccessPoliciesRequest {
        return .init(
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            nextToken: token,
            principalArn: self.principalArn
        )
    }
}

extension EKS.ListClustersRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListClustersRequest {
        return .init(
            include: self.include,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListEksAnywhereSubscriptionsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListEksAnywhereSubscriptionsRequest {
        return .init(
            includeStatus: self.includeStatus,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListFargateProfilesRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListFargateProfilesRequest {
        return .init(
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListIdentityProviderConfigsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListIdentityProviderConfigsRequest {
        return .init(
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListInsightsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListInsightsRequest {
        return .init(
            clusterName: self.clusterName,
            filter: self.filter,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListNodegroupsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListNodegroupsRequest {
        return .init(
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            nextToken: token
        )
    }
}

extension EKS.ListPodIdentityAssociationsRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListPodIdentityAssociationsRequest {
        return .init(
            clusterName: self.clusterName,
            maxResults: self.maxResults,
            namespace: self.namespace,
            nextToken: token,
            serviceAccount: self.serviceAccount
        )
    }
}

extension EKS.ListUpdatesRequest: AWSPaginateToken {
    @inlinable
    public func usingPaginationToken(_ token: String) -> EKS.ListUpdatesRequest {
        return .init(
            addonName: self.addonName,
            maxResults: self.maxResults,
            name: self.name,
            nextToken: token,
            nodegroupName: self.nodegroupName
        )
    }
}

// MARK: Waiters

@available(macOS 10.15, iOS 13.0, tvOS 13.0, watchOS 6.0, *)
extension EKS {
    /// Waiter for operation ``describeAddon(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilAddonActive(
        _ input: DescribeAddonRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeAddonRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("addon.status", expected: "CREATE_FAILED")),
                .init(state: .failure, matcher: try! JMESPathMatcher("addon.status", expected: "DEGRADED")),
                .init(state: .success, matcher: try! JMESPathMatcher("addon.status", expected: "ACTIVE")),
            ],
            minDelayTime: .seconds(10),
            command: self.describeAddon
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeAddon(_:logger:)``.
    ///
    /// - Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - clusterName: The name of your cluster.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilAddonActive(
        addonName: String,
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeAddonRequest(
            addonName: addonName, 
            clusterName: clusterName
        )
        try await self.waitUntilAddonActive(input, logger: logger)
    }

    /// Waiter for operation ``describeAddon(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilAddonDeleted(
        _ input: DescribeAddonRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeAddonRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("addon.status", expected: "DELETE_FAILED")),
                .init(state: .success, matcher: AWSErrorCodeMatcher("ResourceNotFoundException")),
            ],
            minDelayTime: .seconds(10),
            command: self.describeAddon
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeAddon(_:logger:)``.
    ///
    /// - Parameters:
    ///   - addonName: The name of the add-on. The name must match one of the names returned by  ListAddons .
    ///   - clusterName: The name of your cluster.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilAddonDeleted(
        addonName: String,
        clusterName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeAddonRequest(
            addonName: addonName, 
            clusterName: clusterName
        )
        try await self.waitUntilAddonDeleted(input, logger: logger)
    }

    /// Waiter for operation ``describeCluster(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilClusterActive(
        _ input: DescribeClusterRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeClusterRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("cluster.status", expected: "DELETING")),
                .init(state: .failure, matcher: try! JMESPathMatcher("cluster.status", expected: "FAILED")),
                .init(state: .success, matcher: try! JMESPathMatcher("cluster.status", expected: "ACTIVE")),
            ],
            minDelayTime: .seconds(30),
            command: self.describeCluster
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeCluster(_:logger:)``.
    ///
    /// - Parameters:
    ///   - name: The name of your cluster.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilClusterActive(
        name: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeClusterRequest(
            name: name
        )
        try await self.waitUntilClusterActive(input, logger: logger)
    }

    /// Waiter for operation ``describeCluster(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilClusterDeleted(
        _ input: DescribeClusterRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeClusterRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("cluster.status", expected: "ACTIVE")),
                .init(state: .failure, matcher: try! JMESPathMatcher("cluster.status", expected: "CREATING")),
                .init(state: .failure, matcher: try! JMESPathMatcher("cluster.status", expected: "PENDING")),
                .init(state: .success, matcher: AWSErrorCodeMatcher("ResourceNotFoundException")),
            ],
            minDelayTime: .seconds(30),
            command: self.describeCluster
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeCluster(_:logger:)``.
    ///
    /// - Parameters:
    ///   - name: The name of your cluster.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilClusterDeleted(
        name: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeClusterRequest(
            name: name
        )
        try await self.waitUntilClusterDeleted(input, logger: logger)
    }

    /// Waiter for operation ``describeFargateProfile(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilFargateProfileActive(
        _ input: DescribeFargateProfileRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeFargateProfileRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("fargateProfile.status", expected: "CREATE_FAILED")),
                .init(state: .success, matcher: try! JMESPathMatcher("fargateProfile.status", expected: "ACTIVE")),
            ],
            minDelayTime: .seconds(10),
            command: self.describeFargateProfile
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeFargateProfile(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - fargateProfileName: The name of the Fargate profile to describe.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilFargateProfileActive(
        clusterName: String,
        fargateProfileName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeFargateProfileRequest(
            clusterName: clusterName, 
            fargateProfileName: fargateProfileName
        )
        try await self.waitUntilFargateProfileActive(input, logger: logger)
    }

    /// Waiter for operation ``describeFargateProfile(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilFargateProfileDeleted(
        _ input: DescribeFargateProfileRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeFargateProfileRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("fargateProfile.status", expected: "DELETE_FAILED")),
                .init(state: .success, matcher: AWSErrorCodeMatcher("ResourceNotFoundException")),
            ],
            minDelayTime: .seconds(30),
            command: self.describeFargateProfile
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeFargateProfile(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - fargateProfileName: The name of the Fargate profile to describe.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilFargateProfileDeleted(
        clusterName: String,
        fargateProfileName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeFargateProfileRequest(
            clusterName: clusterName, 
            fargateProfileName: fargateProfileName
        )
        try await self.waitUntilFargateProfileDeleted(input, logger: logger)
    }

    /// Waiter for operation ``describeNodegroup(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilNodegroupActive(
        _ input: DescribeNodegroupRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeNodegroupRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("nodegroup.status", expected: "CREATE_FAILED")),
                .init(state: .success, matcher: try! JMESPathMatcher("nodegroup.status", expected: "ACTIVE")),
            ],
            minDelayTime: .seconds(30),
            command: self.describeNodegroup
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeNodegroup(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - nodegroupName: The name of the node group to describe.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilNodegroupActive(
        clusterName: String,
        nodegroupName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeNodegroupRequest(
            clusterName: clusterName, 
            nodegroupName: nodegroupName
        )
        try await self.waitUntilNodegroupActive(input, logger: logger)
    }

    /// Waiter for operation ``describeNodegroup(_:logger:)``.
    ///
    /// - Parameters:
    ///   - input: Input for operation
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilNodegroupDeleted(
        _ input: DescribeNodegroupRequest,
        maxWaitTime: TimeAmount? = nil,
        logger: Logger = AWSClient.loggingDisabled
    ) async throws {
        let waiter = AWSClient.Waiter<DescribeNodegroupRequest, _>(
            acceptors: [
                .init(state: .failure, matcher: try! JMESPathMatcher("nodegroup.status", expected: "DELETE_FAILED")),
                .init(state: .success, matcher: AWSErrorCodeMatcher("ResourceNotFoundException")),
            ],
            minDelayTime: .seconds(30),
            command: self.describeNodegroup
        )
        return try await self.client.waitUntil(input, waiter: waiter, maxWaitTime: maxWaitTime, logger: logger)
    }
    /// Waiter for operation ``describeNodegroup(_:logger:)``.
    ///
    /// - Parameters:
    ///   - clusterName: The name of your cluster.
    ///   - nodegroupName: The name of the node group to describe.
    ///   - logger: Logger used for logging
    @inlinable
    public func waitUntilNodegroupDeleted(
        clusterName: String,
        nodegroupName: String,
        logger: Logger = AWSClient.loggingDisabled        
    ) async throws {
        let input = DescribeNodegroupRequest(
            clusterName: clusterName, 
            nodegroupName: nodegroupName
        )
        try await self.waitUntilNodegroupDeleted(input, logger: logger)
    }
}
